CRITICAL🇵🇱 Wersja polska

CVE-2024-22097

CVSS 9.8v3.1pub. 2024-02-20upd. 2025-11-04

A double-free vulnerability exists in the BrainVision Header Parsing functionality of The Biosig Project libbiosig Master Branch (ab0ee111) and 2.5.0. A specially crafted .vdhr file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

🤖 AI Analysis
How it works

The error occurs in the module responsible for parsing BrainVision format headers (.vhdr files) in the libbiosig library. During processing of such a file, the same memory area is freed twice (double-free), leading to heap corruption. The attacker provides the victim with a specially crafted .vhdr file, which when opened by an application using libbiosig triggers the vulnerability and may result in arbitrary code execution.

Impact

Successful exploitation of the vulnerability allows an attacker to execute arbitrary code in the context of the process handling the file, which may lead to complete system compromise, data disclosure, or system destabilization.

Mitigation & patch

Patches available from the vendor should be applied in accordance with the references. It is recommended to update to the patched version of libbiosig indicated by The Biosig Project and install updated packages in Fedora systems according to the message published on the package-announce mailing list. Avoid opening .vhdr files from untrusted sources until patches are deployed.

Who is affected

The Biosig Project libbiosig Master branch (commit ab0ee111) and version 2.5.0, as well as libbiosig packages provided by Fedora Project Fedora.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Fedora Project Fedora

    OS
    Fedoraproject
    40
  • Libbiosig Project Libbiosig

    APP
    Libbiosig Project
    2.5.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCE
CWE
References

Related vulnerabilities

CVE-2024-4577CRITICAL9.8⚠ KEVPL ✓ten sam produkt

PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit

CVE-2024-5274CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w V8 (Google Chrome) — RCE przez spreparowaną stronę HTML

CVE-2024-4947CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w silniku V8 Chrome — zdalne wykonanie kodu (RCE)

CVE-2024-4671CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Use-after-free w Google Chrome Visuals umożliwiający ucieczkę z sandbox

CVE-2023-6345CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Integer overflow w Skia w Google Chrome — sandbox escape