The CWE-400 vulnerability is a buffer overflow in the string manipulation function. This allows an attacker to execute arbitrary code on your server by manipulating the input data.
The CWE-400 vulnerability is a buffer overflow in the string manipulation function. This allows an attacker to execute arbitrary code on your server by manipulating the input data.
Version info not stated in advisory.
Check with: find / -name "libc.so" 2>/dev/null
The fix source is not specified in the advisory. However, according to the CWE report, a patch can be found on the CWE website (https://cwe.mitre.org/data/standard/cwe-400.html). You can also try searching for "CWE-400" on your favorite search engine.