13 matches found
CVE-2014-9471
creationtimestamp| type| source ---|---|--- 2025-04-03 23:19:50+00:00| seen| https://bsky.app/profile/reodus.bsky.social/post/3llx22ttdlc2b...
RHEL 7 : coreutils (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - coreutils: memory corruption flaw in parsedatetime CVE-2014-9471 - coreutils: Non-privileged session can...
SUSE CVE-2014-9471
The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...
Mageia: Security Advisory (MGASA-2015-0029)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE: Security Advisory (SUSE-SU-2015:0792-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SuSE 11.3 Security Update : coreutils (SAT Patch Number 10620)
Coreutils was updated to fix one security issue and one non-security bug. The following vulnerability was fixed : - Commands such as date, touch or using parsedatetime could, when accepting untrusted input, allow an attacker to crash the application or, potentially, execute arbitrary code...
Ubuntu: Security Advisory (USN-2473-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Updated coreutils packages fix CVE-2014-9471
Updated coreutils packages fix security vulnerability: Bertrand Jacquin and Fiedler Roman discovered date and touch incorrectly handled user-supplied input. An attacker could possibly use this to cause a denial of service or potentially execute code CVE-2014-9471...
CVE-2014-9471
The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...
CVE-2014-9471
The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...
CVE-2014-9471
CVE-2014-9471 refers to a vulnerability in GNU coreutils where the parse_datetime() function can be triggered by a crafted date string (e.g., --date=TZ="123"345) to cause a crash or potentially execute arbitrary code. The initial description explicitly mentions denial of service (crash) and possi...
CVE-2014-9471
The parsedatetime function in GNU coreutils allows remote attackers to cause a denial of service crash or possibly execute arbitrary code via a crafted date string, as demonstrated by the "--date=TZ="123"345" @1" string to the touch or date command...
USN-2473-1: coreutils vulnerabilities
It was discovered that the distcheck rule in dist-check.mk in GNU coreutils allows local users to gain privileges via a symlink attack on a directory tree under /tmp. This issue only affected Ubuntu 10.04 LTS. CVE-2009-4135 Bertrand Jacquin and Fiedler Roman discovered date and touch incorrectly...