Lucene search
GoogleOSV:CVE-2018-19974HistoryDec 17, 2018 - 7:29 p.m.
CVE-2018-19974
2018-12-1719:29:01
Google
osv.dev
3
In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c. This can allow attackers to discover addresses in the real stack (not the YARA virtual stack).
Related
nvd
nvd
CVE-2018-19974
2018-12-17 19:29:01
nessus
nessus
Fedora 30 : python-yara / yara (2019-c3627a0e7a)
2019-05-02 00:00:00
Fedora 30 : yara (2019-a00b4760a0)
2019-10-07 00:00:00
ubuntucve
ubuntucve
CVE-2018-19974
2018-12-17 00:00:00
cvelist
cvelist
CVE-2018-19974
2018-12-17 18:00:00
cve
cve
CVE-2018-19974
2018-12-17 19:29:01
debiancve
debiancve
CVE-2018-19974
2018-12-17 19:29:01
prion
prion
Design/Logic Flaw
2018-12-17 19:29:00
openvas
openvas
Fedora Update for yara FEDORA-2019-a00b4760a0
2019-10-06 00:00:00
YARA <= 3.8.1 Multiple Vulnerabilities
2019-01-08 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: python-yara-3.9.0-2.fc30
2019-04-10 02:48:33
[SECURITY] Fedora 30 Update: yara-3.9.0-1.fc30
2019-04-10 02:48:33
[SECURITY] Fedora 30 Update: yara-3.10.0-2.fc30
2019-10-06 00:57:38