AZL-7337 CVE-2018-21232 affecting package re2c for versions less than 2.0-1

re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...

Buffer Overflow

Overview Affected versions of this package are vulnerable to Buffer Overflow re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags. Remediation Upgrade re2c to version 2.0.3 or higher. References - GitHub Issue...

CVE-2018-21232

re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...

CVE-2018-21232

re2c before 2.0 has uncontrolled recursion that causes stack consumption in findfixedtags...

CVE-2018-21232

CVE-2018-21232 concerns the re2c tool (a C/C++ recognizer generator). Versions before 2.0 contain an uncontrolled recursion in find_fixed_tags that can cause stack consumption, leading to a potential denial of service. The impact described in the sources is stack exhaustion; no exploitation detai...

EulerOS Virtualization 3.0.2.2 : glibc (EulerOS-SA-2020-1478)

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In the GNU C Library aka glibc or libc6 through 2.28, the getaddrinfo function would successfully parse a string that contained an...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2020-1388)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP3 : glibc (EulerOS-SA-2020-1388)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - In the GNU C Library aka glibc or libc6 through 2.29, checkdstlimitscalcpos1 in posix/regexec.c has Uncontrolled Recursion, as demonstrated by...

The vulnerability of the SQLite database management system, related to uncontrolled recursion, allows attackers to trigger a service failure.

The vulnerability of the SQLite database management system is related to a type determination error. Exploiting this vulnerability can allow an attacker to cause a service failure...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2020-1330)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2020-1152)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EulerOS 2.0 SP5 : glibc (EulerOS-SA-2020-1102)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well ...

MGASA-2020-0049 Updated libsass packages fix security vulnerabilities

Use-after-free vulnerability in sasscontext.cpp:handleerror CVE-2018-11499. Null pointer dereference in Sass::SelectorList::populateextends CVE-2018-19797. Use-after-free vulnerability exists in the SharedPtr class CVE-2018-19827. Stack overflow in Eval::operator CVE-2018-19837. Stack-overflow at...

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-2224)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for poppler (EulerOS-SA-2019-2499)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Updated djvulibre packages fix security vulnerabilities

The updated packages fix security vulnerabilities: In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

MGASA-2019-0346 Updated djvulibre packages fix security vulnerabilities

The updated packages fix security vulnerabilities: In DjVuLibre 3.5.27, DjVmDir.cpp in the DJVU reader component allows attackers to cause a denial-of-service application crash in GStringRep::strdup in libdjvu/GString.cpp caused by a heap-based buffer over-read by crafting a DJVU file...

LibSass Uncontrolled Recursion Vulnerability

LibSass is a C/C++ implementation of the Sass compiler. An uncontrolled recursion vulnerability exists in Sass::Eval::operator in eval.cpp in LibSass 3.6.1. No detailed vulnerability details are provided at this time...

DEBIAN-CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...

CVE-2019-18797

LibSass 3.6.1 has uncontrolled recursion in Sass::Eval::operatorSass::BinaryExpression in eval.cpp...