CVE-2026-51105

NameCVE-2026-51105
DescriptionBuffer Overflow vulnerability in aMULE-Project aMule v.2.3.3 allows a remote attacker to cause a denial of service via the OP_SERVERMESSAGE Handler.
SourceCVE (at NVD; CERT, ENISA, LWN, oss-sec, fulldisc, Debian ELTS, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
amule (PTS)bullseye1:2.3.3-1vulnerable
bookworm1:2.3.3-3vulnerable
trixie1:2.3.3-3.2vulnerable
forky, sid1:2.3.3-4.1vulnerable

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
amulesource(unstable)(unfixed)

Notes

https://github.com/amule-project/amule/issues/445
https://github.com/amule-project/amule/pull/447
Fixed by: https://github.com/amule-project/amule/commit/2ca5f40625a051edb6a3695683351ad65d5359cf (3.0.0)

Search for package or bug name: Reporting problems