Lucene search
Redhat.comRH:CVE-2018-3846HistoryApr 17, 2018 - 12:50 a.m.
CVE-2018-3846
2018-04-1700:50:18
redhat.com
access.redhat.com
21
EPSS
0.009
Percentile
82.6%
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
Related
cvelist
cvelist
CVE-2018-3846
2018-04-16 15:00:00
CVE-2019-1010060
2019-07-16 12:16:38
debiancve
debiancve
CVE-2018-3846
2018-04-16 16:29:00
CVE-2019-1010060
2019-07-16 13:15:11
nvd
nvd
CVE-2018-3846
2018-04-16 16:29:00
CVE-2019-1010060
2019-07-16 13:15:11
prion
prion
Stack overflow
2018-04-16 16:29:00
Buffer overflow
2019-07-16 13:15:00
ubuntucve
ubuntucve
CVE-2018-3846
2018-04-16 00:00:00
CVE-2019-1010060
2019-07-16 00:00:00
cve
cve
CVE-2018-3846
2018-04-16 16:29:00
CVE-2019-1010060
2019-07-16 13:15:11
talos
talos
NASA CFITSIO Multiple Stack Overflow Code Execution Vulnerabilities
2018-04-12 00:00:00
mageia
mageia
Updated cfitsio packages fix security vulnerability
2019-04-05 21:12:59
nessus
nessus
Fedora 28 : cfitsio (2019-3c1aed2aa9)
2019-03-27 00:00:00
RHEL 8 : cfitsio (Unpatched Vulnerability)
2024-05-11 00:00:00
RHEL 8 : cfitsio (Unpatched Vulnerability)
2024-06-03 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: cfitsio-3.430-2.fc28
2019-03-27 03:28:03
openvas
openvas
Fedora Update for cfitsio FEDORA-2019-3c1aed2aa9
2019-03-28 00:00:00
Mageia: Security Advisory (MGASA-2019-0133)
2022-01-28 00:00:00
talosblog
talosblog
gentoo
gentoo
cfitsio: Multiple vulnerabilities
2021-01-26 00:00:00