CRITICAL🇵🇱 Wersja polska

CVE-2024-23606

CVSS 9.8v3.1pub. 2024-02-20upd. 2025-11-04

An out-of-bounds write vulnerability exists in the sopen_FAMOS_read functionality of The Biosig Project libbiosig 2.5.0 and Master Branch (ab0ee111). A specially crafted .famos file can lead to arbitrary code execution. An attacker can provide a malicious file to trigger this vulnerability.

🤖 AI Analysis
How it works

The vulnerability results from improper buffer size calculation (CWE-131) during FAMOS format file processing in the sopen_FAMOS_read function. This results in writing data outside the allocated buffer boundaries (CWE-787 — out-of-bounds write). An attacker can provide a malicious .famos file, whose processing by the library leads to memory corruption and consequently to arbitrary code execution.

Impact

Successful exploitation of the vulnerability allows an attacker to execute arbitrary code (RCE) in the context of an application using the libbiosig library, which may lead to complete system compromise.

Mitigation & patch

Security patches available from the vendor should be applied according to the references. It is recommended to update the libbiosig package to a vulnerability-free version according to Fedora communications (package-announce mailing list) and the TALOS-2024-1925 report. It is also advisable to avoid processing .famos files from untrusted sources.

Who is affected

The Biosig Project libbiosig version 2.5.0 and Master branch (commit ab0ee111), as well as related packages in Fedora Project Fedora.

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Fedora Project Fedora

    OS
    Fedoraproject
    40
  • Libbiosig Project Libbiosig

    APP
    Libbiosig Project
    2.5.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
RCEMemory
CWE
References

Related vulnerabilities

CVE-2024-4577CRITICAL9.8⚠ KEVPL ✓ten sam produkt

PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit

CVE-2024-5274CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w V8 (Google Chrome) — RCE przez spreparowaną stronę HTML

CVE-2024-4947CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w silniku V8 Chrome — zdalne wykonanie kodu (RCE)

CVE-2024-4671CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Use-after-free w Google Chrome Visuals umożliwiający ucieczkę z sandbox

CVE-2023-6345CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Integer overflow w Skia w Google Chrome — sandbox escape