60 matches found
CVE-2018-14743
CVE-2018-14743 affects the libpbc.a library used by cloudwu PBC, with a SEGV in wiretype_decode (context.c) up to 2017-03-02. The CVE entry is supported by multiple sources in the connected documents, all describing the same issue. No explicit exploit details or remediation/fix versions are provi...
CVE-2018-14736
CVE-2018-14736 concerns a vulnerability in the crypto library code path of cloudwu PBC (libpbc.a) up to 2017-03-02. A buffer over-read can occur in the function pbc_wmessage_string (file wmessage.c) when handling PTYPE_ENUM . The issue is described in the NVD entry as affecting libpbc.a and enabl...
CVE-2018-14736
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A buffer over-read can occur in pbcwmessagestring in wmessage.c for PTYPEENUM...
CVE-2018-14742
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in setfieldone in bootstrap.c during a memcpy...
CVE-2018-14737
CVE-2018-14737 affects the libpbc.a library from cloudwu PBC up to 2017-03-02. The vulnerability is a NULL pointer dereference in the function pbc_wmessage_string in wmessage.c, which can cause a crash/denial of service. CVSS details in sources indicate high impact (CVSS‑3 base score 7.5) with ne...
CVE-2018-14741
CVE-2018-14741 affects libpbc.a in cloudwu PBC up to 2017-03-02, with a segmentation fault in pbc_pattern_pack (pattern.c). This mode relies on available details; no patch/mitigation details are provided in the connected documents.
CVE-2018-14743
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in wiretypedecode in context.c...
CVE-2018-14741
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in pbcpatternpack in pattern.c...
CVE-2018-14744
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A use-after-free can occur in pbcMspquery in map.c...
CVE-2018-14738
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in pbcrmessagemessage in rmessage.c...
CVE-2018-14740
CVE-2018-14740 affects the libpbc.a component of cloudwu PBC up to 2017-03-02. A crash (SEGV) can occur in the function set_field_one() inside bootstrap.c when making a query, as described in multiple sources (NVD, CVE listings). CVSS v2 base score 5.0 (MEDIUM) and CVSS v3 base score 7.5 (HIGH) r...
CVE-2018-14740
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in setfieldone in bootstrap.c while making a query...
CVE-2018-14739
An issue was discovered in libpbc.a in cloudwu PBC through 2017-03-02. A SEGV can occur in pbcpatternsetdefault in pattern.c...
CVE-2018-14739
CVE-2018-14739 affects the library component libpbc.a in the cloudwu PBC project (pre-2017-03-02). The issue is a SEGV that can occur in the function pbc_pattern_set_default in pattern.c. Per the NVD entry, CVSSv3 base metrics indicate a High impact on availability (AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:...
CVE-2018-11097
An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak vulnerability that could lead to a program crash...
CVE-2018-11097
An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak vulnerability that could lead to a program crash...
Memory corruption
An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak vulnerability that could lead to a program crash...
CVE-2018-11097
An issue was discovered in cloudwu/cstring through 2016-11-09. There is a memory leak vulnerability that could lead to a program crash...
CVE-2018-11097
CVE-2018-11097 affects cloudwu/cstring (a C-based string library) with a memory leak vulnerability present up to 2016-11-09 that can lead to a program crash. The incident is documented with CVSS metrics indicating network access, no authentication required, and an availability impact rated high (...
cstring memory leak vulnerability
cloudwu/cstring is a C-based string library. A memory disclosure vulnerability exists in cloudwu/cstring 2016-11-09 and earlier versions. An attacker can exploit this vulnerability to cause a denial of service program crash...