9 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-40320
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Note that Nessus relies on the presence of the package as report...
OESA-2022-1928 libconfuse security update
libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.
...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
DEBIAN-CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
Heap overflow
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
libConfuse 缓冲区错误漏洞
libConfuse is libConfuse open source a configuration file parser library written in C language. A security vulnerability exists in libConfuse version 3.3, which stems from a heap-based buffer out-of-bounds read in the cfgtildeexpand of its configuse.c component...