Lucene search
K

11 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.15 views

Mageia: Security Advisory (MGASA-2018-0279)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.03739EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2019/05/14 12:27 p.m.19 views

CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

9.8CVSS4.1AI score0.03739EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.29 views

Fedora 28 : leptonica (2018-c6e8b5f529)

Update to leptonica-1.76.0, see http://www.leptonica.com/source/version-notes.html for details. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as...

9.8CVSS8.2AI score0.03739EPSS
Exploits0References4
Mageia
Mageia
added 2018/06/14 6:14 p.m.37 views

Updated leptonica packages fix security vulnerabilities

This update fixes a security issue potential injection attack using gplot rootdir originally reported in CVE-2018-3836. This fix was incomplete and again reported in CVE-2018-7440 and CVE-2018-7442. The improved fix is included in leptonica-1.76.0...

9.8CVSS3AI score0.03739EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2018/05/17 12:0 a.m.19 views

Fedora Update for leptonica FEDORA-2018-c6e8b5f529

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.6AI score0.03739EPSS
Exploits1References2
Debian
Debian
added 2018/03/07 6:58 a.m.21 views

[SECURITY] [DLA 1302-1] leptonlib security update

Package : leptonlib Version : 1.69-3.1+deb7u2 CVE ID : CVE-2018-7186 CVE-2018-7440 Debian Bug : 890548 891932 Different flaws have been found in leptonlib, an image processing library. CVE-2018-7186 Leptonica did not limit the number of characters in a %s format argument to fscanf or sscanf, that...

9.8CVSS7.3AI score0.03739EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/03/07 12:0 a.m.27 views

Debian DLA-1302-1 : leptonlib security update

Different flaws have been found in leptonlib, an image processing library. CVE-2018-7186 Leptonica did not limit the number of characters in a %s format argument to fscanf or sscanf, that made it possible to remote attackers to cause a denial of service stack-based buffer overflow or possibly hav...

9.8CVSS8AI score0.03739EPSS
Exploits0References4
OSV
OSV
added 2018/02/23 9:29 p.m.3 views

UBUNTU-CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

9.8CVSS7.3AI score0.03739EPSS
Exploits0References4
OSV
OSV
added 2018/02/23 9:29 p.m.25 views

CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

9.8CVSS8.2AI score
Exploits0References3
Cvelist
Cvelist
added 2018/02/23 12:0 a.m.21 views

CVE-2018-7440

An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $command approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836...

7.3AI score0.03739EPSS
Exploits0References3
CVE
CVE
added 2018/02/23 12:0 a.m.61 views

CVE-2018-7440

CVE-2018-7440 affects Leptonica up to 1.75.3, where the gplotMakeOutput function allows command injection via a $(command) path argument. This arises from an incomplete fix for CVE-2018-3836 and can lead to arbitrary code execution. Public references in the connected data indicate multiple distri...

9.8CVSS7.1AI score0.03739EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder