CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

Null pointer dereference

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

Heap overflow

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

UBUNTU-CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

UBUNTU-CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

UBUNTU-CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

UBUNTU-CVE-2019-11637

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...

CVE-2019-11640

CVE-2019-11640 affects GNU Recutils 1.8 (notably 1.8.90 in some advisories). The issue is a heap-based buffer overflow in rec_fex_parse_str_simple (rec-fex.c) within librec.a. Impacted versions may crash or become unstable due to memory corruption. Several connected advisories confirm the vulnera...

CVE-2019-11640

An issue was discovered in GNU recutils 1.8. There is a heap-based buffer overflow in the function recfexparsestrsimple at rec-fex.c in librec.a...

CVE-2019-11639

CVE-2019-11639 affects GNU Recutils 1.8, with a stack-based buffer overflow in rec_type_check_enum (rec-types.c, librec.a). The vulnerability’s impact is described as potentially enabling partial confidentiality/integrity/availability impact, with CVSS v3 base score 8.8 (HIGH) and CVSS v2 base sc...

CVE-2019-11639

An issue was discovered in GNU recutils 1.8. There is a stack-based buffer overflow in the function rectypecheckenum at rec-types.c in librec.a...

CVE-2019-11638

GNU recutils 1.8 contains a NULL pointer dereference in rec_field_name_equal_p (rec-field-name.c in librec.a) that leads to a crash. Multiple sources (NVD, OSV, CNVD, Ubuntu USN-7137-1, and related advisories) reference CVE-2019-11638 and link it to a crash/denial behavior, but none of the provid...

CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

CVE-2019-11638

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recfieldnameequalp at rec-field-name.c in librec.a, leading to a crash...

CVE-2019-11637

GNU recutils 1.8 contains a NULL pointer dereference in rec_rset_get_props (rec-rset.c in librec.a), leading to crashes. This CVE-2019-11637 issue is described consistently across multiple feeds (NVD, OSV, CNVD, CNVD-China, and related Nessus/OpenVAS entries). Connected documents confirm the affe...

CVE-2019-11637

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...

CVE-2019-11637

An issue was discovered in GNU recutils 1.8. There is a NULL pointer dereference in the function recrsetgetprops at rec-rset.c in librec.a, leading to a crash...

PT-2019-12442 · Gnu +3 · Gnu Recutils +3

Name of the Vulnerable Software and Affected Versions: GNU recutils version 1.8 Description: An issue was discovered that leads to a crash due to a NULL pointer dereference in the function rec field name equal p at rec-field-name.c in librec.a. Recommendations: For GNU recutils version 1.8, at th...