9 matches found
Linux Distros Unpatched Vulnerability : CVE-2016-9584
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libical allows remote attackers to cause a denial of service use-after-free and possibly read heap memory via a crafted ics file. CVE-2016-9584 Note that Nessus...
RHEL 6 : libical (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libical: Use-after-free CVE-2016-9584 - The icalparserparsestring function in libical 0.47 and 1.0 allows...
RHEL 7 : libical (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libical: Use-after-free CVE-2016-9584 - The icalpropertynewclone function in libical 0.47 and 1.0 allows...
RHEL 6 : libical (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libical: Stack buffer overflow in icalrecuraddbydayrules in icalrecur.c CVE-2019-11705 - The...
SUSE: Security Advisory (SUSE-SU-2017:1989-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libical (EulerOS-SA-2019-1915)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2018-0021 Updated libical packages fix security vulnerability
libical 1.0 allows remote attackers to cause a denial of service use-after-free via a crafted ics file CVE-2016-5824. The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the...
SUSE SLED12 / SLES12 Security Update : libical (SUSE-SU-2017:1989-1)
This update for libical fixes the following issues: Security issues fixed : - CVE-2016-5824: libical 1.0 allows remote attackers to cause a denial of service use-after-free via a crafted ics file. bsc986639 - CVE-2016-5827: The icaltimefromstring function in libical 0.47 and 1.0 allows remote...
CVE-2016-9584
CVE-2016-9584 affects libical, where parsing ICS files can trigger a use-after-free in the library, potentially leading to denial of service and heap memory exposure. Connected advisories and Nessus plugins consistently describe libical as the vulnerable component and reference the same use-after...