Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2023-3421)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2023-3394)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-49991

A flaw was found in the espeak-ng package. A local attacker can use a specially crafted payload to trigger a buffer underflow condition, which may lead to an application crash or allow for arbitrary code execution. Mitigation Mitigation for this issue is either not available or the currently...

DEBIAN-CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

eSpeak NG Security Vulnerability

eSpeak NG is an open source software text-to-speech synthesizer from eSpeak NG Open Source. A security vulnerability exists in eSpeak NG version 1.52-dev, which is caused by a buffer underflow in the CountVowelPosition method of the synthdata.c file...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

CVE-2023-49991

Espeak-ng 1.52-dev was discovered to contain a Stack Buffer Underflow via the function CountVowelPosition at synthdata.c...

PT-2023-9302 · Espeak-Ng +6 · Espeak-Ng +6

Name of the Vulnerable Software and Affected Versions: Espeak-ng version 1.52-dev Description: The issue is related to a Stack Buffer Underflow via the CountVowelPosition function at synthdata.c. This could allow an attacker to cause a denial of service or potentially execute arbitrary code. The...

CVE-2023-49991

CVE-2023-49991 affects espeak-ng; multiple connected advisories confirm a Stack Buffer Underflow in the function CountVowelPosition within synthdata.c (espeak-ng 1.52-dev). The issue is reported across distributions (SUSE, Debian, Tencent/Tenables context) with references to vendor advisories or ...

Rocky Linux 8 : c-ares (RLSA-2023:7207)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:7207 advisory. - Buffer overflow vulnerability in c-ares before 1161 thru 1170 via function aresparsesoareply in aresparsesoareply.c. CVE-2020-22217 - c-ares is an...

Oracle Linux 8 : c-ares (ELSA-2023-7207)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-7207 advisory. 1.13.0-9.1 - Resolves: RHEL-11931 - Buffer Underwrite in aresinetnetpton rhel-8.9.0.z 1.13.0-9 - Resolves: rhbz2238293 - CVE-2020-22217 c-ares:...

c-ares: Buffer Underwrite in ares_inet_net_pton()

A vulnerability was found in c-ares. This issue occurs in the aresinetnetpton function, which is vulnerable to a buffer underflow for certain ipv6 addresses. "0::00:00:00/2" in particular was found to cause an issue. C-ares only uses this function internally for configuration purposes, which woul...

RHEL 8 : c-ares (RHSA-2023:7392)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:7392 advisory. The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: Buffer Underwrite ...

Oracle Linux 9 : c-ares (ELSA-2023-6635)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-6635 advisory. - Resolves: rhbz2209564 - CVE-2023-31124 c-ares: AutoTools does not set CARESRANDOMFILE during cross compilation rhel-9 - Resolves: rhbz2209556 -...

RHEL 8 : c-ares (RHSA-2023:7207)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:7207 advisory. The c-ares C library defines asynchronous DNS Domain Name System requests and provides name resolving API. Security Fixes: c-ares: Heap buff...

Huawei EulerOS: Security Advisory for c-ares (EulerOS-SA-2023-3115)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...