Nixpkgs security tracker

Dismissed

(not in Nixpkgs)

Permalink CVE-2016-20045

8.4 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Local (L)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): High (H)
Availability (A): High (H)
Modified Attack Vector (MAV): Local (L)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): High (H)
Modified Availability (MA): High (H)

updated 1 month, 3 weeks ago by @LeSuisse Activity log

Created suggestion 1 month, 4 weeks ago
@LeSuisse ignored package tests.fetchgit.submodule-leave-git 1 month, 3 weeks ago
@LeSuisse dismissed (not in Nixpkgs) 1 month, 3 weeks ago

HNB Organizer 1.9.18-10 Local Buffer Overflow via -rc Parameter

HNB Organizer 1.9.18-10 contains a local buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying an oversized argument to the -rc command-line parameter. Attackers can craft a malicious input string exceeding 108 bytes containing shellcode and a return address to overwrite the stack and achieve code execution.

References

ExploitDB-40025 exploit
Official Product Homepage product
VulnCheck Advisory: HNB Organizer 1.9.18-10 Local Buffer Overflow via -rc Parameter third-party-advisory

Affected products

HNB

==1.9.18-10

Matching in nixpkgs

pkgs.osmo-hnbgw

Osmocom Home NodeB Gateway, for attaching femtocells to the 3G CN (OsmoMSC, OsmoSGSN)

Ignored packages (1)

pkgs.tests.fetchgit.submodule-leave-git

None

nixos-25.11 z58l2vrm1hnb
- nixos-25.11-small z58l2vrm1hnb
- nixpkgs-25.11-darwin z58l2vrm1hnb

Suggestion detail

References

Affected products

Matching in nixpkgs

pkgs.osmo-hnbgw

pkgs.tests.fetchgit.submodule-leave-git