CVE-2017-11590

There is a NULL pointer dereference in the caselesshash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote denial of service attack...

CVE-2017-11590

CVE-2017-11590 affects libgxps 0.2.5 due to a NULL pointer dereference in the caseless_hash function (gxps-archive.c). A crafted input may cause remote denial of service. The CVSS metrics in the initial entry indicate 4.3 (CVSS v2) and 7.5 (CVSS v3) with NETWORK access, low complexity and no user...

libgxps 'caseless_hash' function denial of service vulnerability

libgxps is a library for processing XPS documents based on GObject a C-based framework. A security vulnerability exists in the 'caselesshash' function in the gxps-archive.c file in libgxps version 0.2.5. A remote attacker can exploit this vulnerability with specially crafted input to cause a deni...

Null pointer dereference

libxar.so in xar 1.6.1 has a NULL pointer dereference in the xarunserialize function in archive.c...

CVE-2017-11124

libxar.so in xar 1.6.1 has a NULL pointer dereference in the xarunserialize function in archive.c...

CVE-2017-11124

CVE-2017-11124 concerns the XAR project: libxar.so in xar 1.6.1 contains a NULL pointer dereference in the xar_unserialize function (archive.c). The connected records corroborate the CVE across NVD entries and Fedora advisories, noting the issue alongside related CVEs in xar releases and updates ...

Xar 'xar_unserialize' Null Pointer Dereference Vulnerability

xar is an open source easily extensible command line utility . A security vulnerability exists in the 'xarunserialize' function in the archive.c file of the libxar.so file in xar version 1.6.1. An attacker can exploit this vulnerability to cause a denial of service null pointer backreference...