PT-2014-8857 · At&T +1 · Graphviz +1

Name of the Vulnerable Software and Affected Versions: Graphviz affected versions not specified Description: The issue is related to a format string vulnerability in the yyerror function in lib/cgraph/scan.l of Graphviz. This vulnerability allows remote attackers to have an unspecified impact via...

UBUNTU-CVE-2014-9157

Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...