Astra Linux - уязвимость в aspell

In GNU Aspell 0.60.8, objstack has a heap-based buffer overflow in the acommon::ObjStack::duptop function called from acommon::StringMap::add and acommon::Config::lookuplist...

Unity Linux 20.1060e / 20.1070e Security Update: aspell (UTSA-2026-017600)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017600 advisory. libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the...

EUVD-2019-7894

Malware in sbrugna...

EUVD-2004-0547

Malware in sbrugna...

NewStart CGSL MAIN 7.02 : aspell Vulnerability (NS-SA-2025-0205)

The remote NewStart CGSL host, running version MAIN 7.02, has aspell packages installed that are affected by a vulnerability: - objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::duptop called from acommon::StringMap::add and acommon::Config::lookuplist...

SUSE CVE-2019-20433

libaspell.a in GNU Aspell before 0.60.8 has a buffer over-read for a string ending with a single '\0' byte, if the encoding is set to ucs-2 or ucs-4 outside of the application, as demonstrated by the ASPELLCONF environment variable...

SUSE CVE-2019-25051

objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::duptop called from acommon::StringMap::add and acommon::Config::lookuplist...

Mageia: Security Advisory (MGASA-2021-0388)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

OPENSUSE-SU-2021:1181-1 Security update for aspell

This update for aspell fixes the following issues: - CVE-2019-25051: Fixed heap-buffer-overflow in acommon:ObjStack:duptop bsc1188576. This update was imported from the SUSE:SLE-15-SP2:Update update project...

USN-5023-1 aspell vulnerability

It was discovered that Aspell incorrectly handled certain inputs. An attacker could possibly use this issue to execute arbitrary code or cause a crash...

USN-4155-2: Aspell vulnerability

USN-4155-1 fixed a vulnerability in Aspell. This update provides the corresponding update for Ubuntu 19.10. Original advisory details: It was discovered that Aspell incorrectly handled certain inputs. An attacker could potentially access sensitive information...

Ubuntu 16.04 LTS / 18.04 LTS : Aspell vulnerability (USN-4155-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-4155-1 advisory. It was discovered that Aspell incorrectly handled certain inputs. An attacker could potentially access sensitive information. Tenable has extracted th...

USN-4155-1 aspell vulnerability

It was discovered that Aspell incorrectly handled certain inputs. An attacker could potentially access sensitive information...

GNU Aspell Buffer Overflow Vulnerability

GNU Aspell is a free, open source spell checker. A stack buffer overflow vulnerability exists in acommon::unescape in common/getdata.cpp in libaspell.a in versions prior to GNU Aspell 0.60.8, which can be exploited by an attacker to cause, among other things, a buffer overflow or heap overflow...

Mandrake Linux Security Advisory : aspell (MDKSA-2004:153)

A vulnerability was discovered in the aspell word-list-compress utility that can allow an attacker to execute arbitrary code. The updated packages have been patched to correct this problem. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin...

GLSA-200406-14 : aspell: Buffer overflow in word-list-compress

The remote host is affected by the vulnerability described in GLSA-200406-14 aspell: Buffer overflow in word-list-compress aspell includes a utility for handling wordlists called word-list-compress. This utility fails to do proper bounds checking when processing words longer than 256 bytes. Impac...

CVE-2004-0548

Multiple stack-based buffer overflows in the word-list-compress functionality in compress.c for Aspell allow local users to execute arbitrary code via a long entry in the wordlist that is not properly handled when using the 1 "c" compress option or 2 "d" decompress option...