Vulnerabilities > CVE-2023-26257 - Memory Leak vulnerability in Covesa Dlt-Daemon
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
An issue was discovered in the Connected Vehicle Systems Alliance (COVESA; formerly GENIVI) dlt-daemon through 2.18.8. Dynamic memory is not released after it is allocated in dlt-control-common.c.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://github.com/COVESA/dlt-daemon/issues/440
- https://github.com/COVESA/dlt-daemon/issues/440
- https://github.com/COVESA/dlt-daemon/pull/441/commits/b6149e203f919c899fefc702a17fbb78bdec3700
- https://github.com/COVESA/dlt-daemon/pull/441/commits/b6149e203f919c899fefc702a17fbb78bdec3700
- https://lists.debian.org/debian-lts-announce/2024/06/msg00021.html
- https://lists.debian.org/debian-lts-announce/2024/06/msg00021.html