CVE-2017-14731 - log back

CVE-2017-14731 created at 25 Sep 2019 19:31:40
Severity
+ Medium
Remote
+ Remote
Type
+ Denial of service
Description
+ ofx_proc_file in ofx_preproc.cpp in LibOFX 0.9.12 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file, as demonstrated by an ofxdump call.
References
+ https://github.com/libofx/libofx/issues/10
+ https://github.com/libofx/libofx/commit/fad8418f34094de42e1307113598e0e8bee0a2bd
Notes