CVE-2025-14242
A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence.
Vendor
-
Product
-
CWE
Yayın Tarihi
2026-01-14 16:15:55
Güncelleme
2026-03-16 14:17:55
Source Identifier
secalert@redhat.com
KEV Date Added
-
Kategoriler
Referanslar
https://access.redhat.com/errata/RHSA-2026:0605
https://access.redhat.com/errata/RHSA-2026:0606
https://access.redhat.com/errata/RHSA-2026:0608
https://access.redhat.com/errata/RHSA-2026:4470
https://access.redhat.com/errata/RHSA-2026:4477
https://access.redhat.com/errata/RHSA-2026:4513
https://access.redhat.com/errata/RHSA-2026:4522
https://access.redhat.com/errata/RHSA-2026:4525
https://access.redhat.com/errata/RHSA-2026:4543
https://access.redhat.com/errata/RHSA-2026:4550
https://access.redhat.com/errata/RHSA-2026:4553
https://access.redhat.com/errata/RHSA-2026:4554
https://access.redhat.com/security/cve/CVE-2025-14242
https://bugzilla.redhat.com/show_bug.cgi?id=2419826