CVE-2021-41498: Pyo Buffer Overflow Vulnerability

December 18, 2021 (updated November 22, 2024)

Buffer overflow in ajaxsoundstudio.com Pyo <= 1.03 in the Server_jack_init function which allows attackers to conduct Denial of Service attacks by arbitrary constructing a overlong client_name.

References

github.com/advisories/GHSA-qj27-32wp-ghrg
github.com/belangeo/pyo/commit/017702c73332a8560c8554a36250a6da587a2418
github.com/belangeo/pyo/issues/221
github.com/pypa/advisory-database/tree/main/vulns/pyo/PYSEC-2021-890.yaml
nvd.nist.gov/vuln/detail/CVE-2021-41498

Detect and mitigate CVE-2021-41498 with GitLab Dependency Scanning

Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →