CVE-2023-52267

Source
https://nvd.nist.gov/vuln/detail/CVE-2023-52267
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2023-52267.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2023-52267
Published
2023-12-31T00:15:44Z
Modified
2025-09-19T14:46:29.186755Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

ehttp 1.0.6 before 17405b9 has a simple_log.cpp _log out-of-bounds-read during error logging for long strings.

References

Affected packages

Git / github.com/hongliuliao/ehttp

Affected ranges

Type
GIT
Repo
https://github.com/hongliuliao/ehttp
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed

Affected versions

1.*

1.0.1
1.0.2
1.0.3
1.0.3-fix
1.0.4
1.0.5
1.0.6

Other

bio_version

Database specific

{
    "vanir_signatures": [
        {
            "id": "CVE-2023-52267-4a636073",
            "signature_type": "Function",
            "target": {
                "file": "src/sim_parser.cpp",
                "function": "Request::parse_request"
            },
            "digest": {
                "function_hash": "73602595406765603495895243458529999594",
                "length": 736.0
            },
            "deprecated": false,
            "signature_version": "v1",
            "source": "https://github.com/hongliuliao/ehttp/commit/17405b975948abc216f6a085d2d027ec1cfd5766"
        },
        {
            "id": "CVE-2023-52267-8d009e71",
            "signature_type": "Function",
            "target": {
                "file": "src/epoll_socket.cpp",
                "function": "EpollSocket::handle_readable_event"
            },
            "digest": {
                "function_hash": "93877066501049313000888507392004009704",
                "length": 677.0
            },
            "deprecated": false,
            "signature_version": "v1",
            "source": "https://github.com/hongliuliao/ehttp/commit/17405b975948abc216f6a085d2d027ec1cfd5766"
        },
        {
            "id": "CVE-2023-52267-a66d2add",
            "signature_type": "Line",
            "target": {
                "file": "src/sim_parser.cpp"
            },
            "digest": {
                "line_hashes": [
                    "97078807774778642258282973658459630335",
                    "338064464938120916455642639290206514037",
                    "274913430948339487223909751919153920503",
                    "152853396008199110312237658894110687106"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "signature_version": "v1",
            "source": "https://github.com/hongliuliao/ehttp/commit/17405b975948abc216f6a085d2d027ec1cfd5766"
        },
        {
            "id": "CVE-2023-52267-bcea52ce",
            "signature_type": "Function",
            "target": {
                "file": "src/epoll_socket.cpp",
                "function": "read_func"
            },
            "digest": {
                "function_hash": "31465679358294368451393686241417280189",
                "length": 256.0
            },
            "deprecated": false,
            "signature_version": "v1",
            "source": "https://github.com/hongliuliao/ehttp/commit/17405b975948abc216f6a085d2d027ec1cfd5766"
        },
        {
            "id": "CVE-2023-52267-d4e314c9",
            "signature_type": "Line",
            "target": {
                "file": "src/epoll_socket.cpp"
            },
            "digest": {
                "line_hashes": [
                    "329241973833385240603699716665315814897",
                    "112175492930112887238917383991016779289",
                    "288691531011773280941275128769726435664",
                    "253932568007561709924862045390154546888",
                    "90885647615834147087855771394769476914",
                    "20238336541240907050694021874287316153",
                    "85229494304821332111168579485102171358",
                    "18689021168757126544170751874331136107",
                    "133910018089163050764349913131236699907",
                    "16216665604355755383291786654020254619",
                    "302957446397306479393092314695632629083"
                ],
                "threshold": 0.9
            },
            "deprecated": false,
            "signature_version": "v1",
            "source": "https://github.com/hongliuliao/ehttp/commit/17405b975948abc216f6a085d2d027ec1cfd5766"
        }
    ]
}