The vulnerability of the EditorConfig core library in the C programming language, related to buffer overflow in the stack, allows a malicious actor to trigger a service failure.

The vulnerability of the EditorConfig core library in the C programming language is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to cause a service failure...

USN-7168-1: EditorConfig vulnerabilities

It was discovered that EditorConfig improperly managed memory when handling certain inputs, leading to overflows. An attacker could possibly use these issues to cause a denial of service, or execute arbitrary code...

USN-7168-1 editorconfig-core vulnerabilities

It was discovered that EditorConfig improperly managed memory when handling certain inputs, leading to overflows. An attacker could possibly use these issues to cause a denial of service, or execute arbitrary code...

Ubuntu: Security Advisory (USN-7168-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS : EditorConfig vulnerabilities (USN-7168-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7168-1 advisory. It was discovered that EditorConfig improperly managed memory when handling certain inputs, leading to overflows. An...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : editorconfig-core-c (SUSE-SU-2024:4152-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:4152-1 advisory. - CVE-2024-53849: stack buffer overflow and pointer overflow when handling escaped characters. bsc1233815...

openSUSE Security Advisory (SUSE-SU-2024:4152-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security update for editorconfig-core-c

This update for editorconfig-core-c fixes the following issues: CVE-2024-53849: stack buffer overflow and pointer overflow when handling escaped characters. bsc1233815 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

SUSE-SU-2024:4152-1 Security update for editorconfig-core-c

This update for editorconfig-core-c fixes the following issues: - CVE-2024-53849: stack buffer overflow and pointer overflow when handling escaped characters. bsc1233815...

Debian: Security Advisory (DLA-3978-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] [DLA 3978-1] editorconfig-core security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3978-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 30, 2024 https://wiki.debian.org/LTS -...

Debian dla-3978 : editorconfig - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3978 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3978-1 [email protected]...

DLA-3978-1 editorconfig-core - security update

Bulletin has no description...

SUSE CVE-2024-53849

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...

CVE-2024-53849

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...

DEBIAN-CVE-2024-53849

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...

UBUNTU-CVE-2024-53849

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...

CVE-2024-53849 Several stack buffer overflows and pointer overflows in editorconfig-core-c

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...

CVE-2024-53849

The CVE-2024-53849 issue affects editorconfig-core-c (EditorConfig core library in C) where multiple escaped characters in input patterns can trigger stack/pointer overflows in the '[' handling during parsing. The root cause is that added backslashes reduce available space in nested-bracket outpu...

CVE-2024-53849 Several stack buffer overflows and pointer overflows in editorconfig-core-c

editorconfig-core-c is theEditorConfig core library written in C for use by plugins supporting EditorConfig parsing. In affected versions several overflows may occur in switch case '' when the input pattern contains many escaped characters. The added backslashes leave too little space in the outp...