Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2014-0978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line i...

9.3CVSS7.1AI score0.04886EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 6 : graphviz (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - graphviz: stack-based buffer overflow in chkNum CVE-2014-1236 - graphviz: recursive function call in...

6.5CVSS7.5AI score0.06082EPSS
Exploits4References4
SUSE CVE
SUSE CVE
added 2023/02/15 5:31 a.m.4 views

SUSE CVE-2014-0978

Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...

9.3CVSS7.3AI score0.04886EPSS
Exploits1References3
Prion
Prion
added 2017/08/07 8:29 p.m.20 views

Stack overflow

Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978...

6.8CVSS8.3AI score0.04886EPSS
Exploits1References6Affected Software1
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.15 views

Amazon Linux: Security Advisory (ALAS-2014-297)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7AI score0.06082EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/03/12 12:0 a.m.22 views

Amazon Linux AMI : graphviz (ALAS-2014-296)

Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a 'badly formed number' and a 'long digit list.' Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphvi...

10CVSS7.2AI score0.06082EPSS
Exploits2References4
Amazon
Amazon
added 2014/03/06 12:0 a.m.38 views

Medium: graphviz-php

Issue Overview: Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list." Stack-based buffer overflow in the yyerror function in...

10CVSS7.7AI score0.06082EPSS
Exploits2
Amazon
Amazon
added 2014/02/03 12:0 a.m.36 views

Medium: graphviz

Issue Overview: Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file. Affected Packages: graphviz Issue Correction: Run yum update graphviz or yum update --advisory ALAS-2014-28...

9.3CVSS7.6AI score0.04886EPSS
Exploits1
Amazon
Amazon
added 2014/02/03 12:0 a.m.38 views

Medium: graphviz-php

Issue Overview: Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file. Affected Packages: graphviz-php Issue Correction: Run yum update graphviz-php or yum update --advisory...

9.3CVSS7.6AI score0.04886EPSS
Exploits1
OpenVAS
OpenVAS
added 2014/01/20 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-2083-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.06082EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/01/17 12:0 a.m.29 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : graphviz vulnerabilities (USN-2083-1)

It was discovered that Graphviz incorrectly handled memory in the yyerror function. If a user were tricked into opening a specially crafted dot file, an attacker could cause Graphviz to crash, or possibly execute arbitrary code. CVE-2014-0978, CVE-2014-1235 It was discovered that Graphviz...

10CVSS7.2AI score0.06082EPSS
Exploits2References4
securityvulns
securityvulns
added 2014/01/15 12:0 a.m.74 views

[SECURITY] [DSA 2843-1] graphviz security update

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-2843-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 13, 2014 http://www.debian.org/security/faq -...

10CVSS2.5AI score0.06082EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/01/14 12:0 a.m.31 views

Debian DSA-2843-1 : graphviz - buffer overflow

Two buffer overflow vulnerabilities were reported in Graphviz, a rich collection of graph drawing tools. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2014-0978 It was discovered that user-supplied input used in the yyerror function in lib/cgraph/scan.l ...

10CVSS7.4AI score0.06082EPSS
Exploits2References8
Debian
Debian
added 2014/01/13 9:49 p.m.24 views

[SECURITY] [DSA 2843-1] graphviz security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2843-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 13, 2014 http://www.debian.org/security/faq -...

10CVSS1.1AI score0.06082EPSS
Exploits2
Debian
Debian
added 2014/01/13 9:49 p.m.35 views

[SECURITY] [DSA 2843-1] graphviz security update

------------------------------------------------------------------------- Debian Security Advisory DSA-2843-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso January 13, 2014 http://www.debian.org/security/faq -...

10CVSS8.5AI score0.06082EPSS
Exploits2
OpenVAS
OpenVAS
added 2014/01/13 12:0 a.m.22 views

Debian Security Advisory DSA 2843-1 (graphviz - buffer overflow)

Two buffer overflow vulnerabilities were reported in Graphviz, a rich collection of graph drawing tools. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2014-0978 It was discovered that user-supplied input used in the yyerror function in lib/cgraph/scan.l is...

10CVSS0.3AI score0.06082EPSS
Exploits2References1
OSV
OSV
added 2014/01/10 5:55 p.m.9 views

CVE-2014-0978

Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...

7.9AI score
Exploits0References13
CVE
CVE
added 2014/01/10 5:0 p.m.71 views

CVE-2014-0978

CVE-2014-0978 is a stack-based buffer overflow in Graphviz 2.34.0, affecting the yyerror function in lib/cgraph/scan.l. A crafted dot file with a long line can trigger remote code execution or crash (as described in the CVE entry and corroborated by multiple advisories). Public disclosures across...

9.3CVSS7.7AI score0.04886EPSS
Exploits1References12Affected Software1
Debian CVE
Debian CVE
added 2014/01/10 5:0 p.m.26 views

CVE-2014-0978

Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...

9.3CVSS7.4AI score0.04886EPSS
Exploits1
UbuntuCve
UbuntuCve
added 2014/01/10 12:0 a.m.33 views

CVE-2014-0978

Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...

9.3CVSS7.1AI score0.04886EPSS
Exploits1References3
Rows per page
Query Builder