CVE-2006-3123

Priority
Description
Multiple integer overflows in the (1) dodecrypt and (2) doencrypt functions
in cfs_fh.c in cfsd in Matt Blaze Cryptographic File System (CFS) 1.4.1
before Debian GNU/Linux package 1.4.1-17 allow local users to cause a
denial of service (daemon crash) by appending data to a file that is larger
than 2 Gb.
Notes
Package
Source: cfs (LP Ubuntu Debian)
Upstream:needs-triage
More Information

Updated: 2020-03-18 21:53:25 UTC (commit 2ea7df7bd1e69e1e489978d2724a936eb3faa1b8)