Lucene search
K

7 matches found

NVD
NVD
added 2017/08/07 8:29 p.m.11 views

CVE-2014-1235

Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978...

7.8CVSS8AI score0.02929EPSS
Exploits0References6
OSV
OSV
added 2017/08/07 8:29 p.m.9 views

CVE-2014-1235

Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978...

7.8CVSS8AI score
Exploits0References12
CVE
CVE
added 2017/08/07 8:0 p.m.60 views

CVE-2014-1235

CVE-2014-1235 affects Graphviz 2.34.0 where a stack-based buffer overflow in the yyerror function allows remote attackers to execute code or cause a denial of service via a crafted file; this is noted as a consequence of an incomplete fix for CVE-2014-0978. Connected sources indicate multiple vul...

7.8CVSS7.9AI score0.02929EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/02/12 12:0 a.m.30 views

Fedora 19 : graphviz-2.30.1-12.fc19 (2014-0621)

This is an update that fixes CVE-2014-1235 and CVE-2014-1236. This is an update that fixes overflow in yyerror. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it a...

10CVSS6.8AI score0.06082EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2014/02/12 12:0 a.m.26 views

Fedora 20 : graphviz-2.34.0-8.fc20 (2014-0602)

This is an update fixing CVE-2014-1235 and CVE-2014-1236. This is an update that fixes overflow in yyerror. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as mu...

10CVSS6.8AI score0.06082EPSS
Exploits2References7
OpenVAS
OpenVAS
added 2014/01/20 12:0 a.m.19 views

Ubuntu: Security Advisory (USN-2083-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.6AI score0.06082EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/01/17 12:0 a.m.29 views

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.04 / 13.10 : graphviz vulnerabilities (USN-2083-1)

It was discovered that Graphviz incorrectly handled memory in the yyerror function. If a user were tricked into opening a specially crafted dot file, an attacker could cause Graphviz to crash, or possibly execute arbitrary code. CVE-2014-0978, CVE-2014-1235 It was discovered that Graphviz...

10CVSS7.2AI score0.06082EPSS
Exploits2References4
Rows per page
Query Builder