Lucene search
K

21 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-18199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...

6.5CVSS6.6AI score0.03332EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:36 a.m.3 views

SUSE CVE-2017-18199

reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...

3.3CVSS6.7AI score0.03332EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2020:3023-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS8.2AI score0.03332EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/12/09 12:0 a.m.22 views

SUSE SLES12 Security Update : libcdio (SUSE-SU-2020:3023-1)

This update for libcdio fixes the following issues : The following security vulnerability was addressed : CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c, which allowed remote attackers to cause a denial of service via a crafted ISO file. bsc1082821 Note that Tenable...

6.5CVSS6.7AI score0.03332EPSS
Exploits1References4
OSV
OSV
added 2020/10/23 12:21 p.m.7 views

SUSE-SU-2020:3023-1 Security update for libcdio

This update for libcdio fixes the following issues: The following security vulnerability was addressed: - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c, which allowed remote attackers to cause a denial of service via a crafted ISO file. bsc1082821...

6.5CVSS7.6AI score0.03332EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.18 views

Huawei EulerOS: Security Advisory for libcdio (EulerOS-SA-2018-1390)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.2AI score0.03427EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.21 views

openSUSE Security Update : libcdio (openSUSE-2019-599)

This update for libcdio fixes the following issues : The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc108287...

9.8CVSS6.8AI score0.03426EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/25 12:0 a.m.22 views

Amazon Linux 2 : libcdio (ALAS-2019-1151)

A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS.CVE-2017-18198 A double-free flaw was found in the wa...

9.8CVSS6.8AI score0.03427EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.23 views

SUSE SLED15 / SLES15 Security Update : libcdio (SUSE-SU-2018:2236-1)

This update for libcdio fixes the following issues: The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc1082877...

9.8CVSS6.8AI score0.03426EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.15 views

Scientific Linux Security Update : libcdio on SL7.x x86_64 (20181030)

Security Fixes : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in reallocsymlink in rock.c CVE-2017-18199 - libcdio: Double free in getcdtextgeneric in lib/driver/cdiogeneric.c CVE-2017-18201 C Tenable Netwo...

9.8CVSS7.1AI score0.03427EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/11/16 12:0 a.m.28 views

CentOS 7 : libcdio (CESA-2018:3246)

An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.2AI score0.03427EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/11/07 12:0 a.m.32 views

Oracle Linux 7 : libcdio (ELSA-2018-3246)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3246 advisory. - fix CVE-2017-18198 and CVE-2017-18199 - fix CVE-2017-18201 Tenable has extracted the preceding description block directly from the Oracle Linux...

9.8CVSS7.1AI score0.03427EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2018/11/05 12:0 a.m.506 views

libcdio security update

0.92-3 - fix CVE-2017-18198 and CVE-2017-18199 - Resolves: rhbz1553769 - Resolves: rhbz1553604 0.92-2 - fix CVE-2017-18201 - Resolves: rhbz1553621...

9.8CVSS1.9AI score0.03427EPSS
Exploits1
OpenVAS
OpenVAS
added 2018/10/26 12:0 a.m.17 views

openSUSE: Security Advisory for libcdio (openSUSE-SU-2018:2294-1)

The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

9.8CVSS8.2AI score0.03426EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/08/10 12:0 a.m.23 views

openSUSE Security Update : libcdio (openSUSE-2018-857)

This update for libcdio fixes the following issues : The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc108287...

9.8CVSS6.8AI score0.03426EPSS
Exploits1References4
Mageia
Mageia
added 2018/04/22 7:59 p.m.27 views

Updated libcdio packages fix security vulnerabilities

A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS CVE-2017-18198. A NULL pointer dereference flaw was...

9.8CVSS1.1AI score0.03427EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2018/03/21 12:0 a.m.21 views

Fedora 26 : libcdio (2018-199e6065ee)

Added patch to fix: CVE-2017-18198 1549644 Added patch to fix: CVE-2017-18199 1549701 Added patches to fix: CVE-2017-18201 1549707 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automaticall...

9.8CVSS6.8AI score0.03427EPSS
Exploits1References4
OSV
OSV
added 2018/02/24 6:29 a.m.8 views

CVE-2017-18199

reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...

6.5CVSS7.2AI score
Exploits0References4
NVD
NVD
added 2018/02/24 6:29 a.m.13 views

CVE-2017-18199

reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...

6.5CVSS7.1AI score0.03332EPSS
Exploits1References4
CVE
CVE
added 2018/02/24 6:0 a.m.96 views

CVE-2017-18199

CVE-2017-18199 affects libcdio (GNU) via realloc_symlink in rock.c. A NULL pointer dereference can be triggered by processing a crafted ISO file, enabling remote denial of service. The vulnerability is present in libcdio versions before 1.0.0. Remediation: upgrade to libcdio 1.0.0 or newer (vendo...

6.5CVSS7AI score0.03332EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder