Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2017-5834

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The parsedictnode function in bplist.c in libplist allows attackers to cause a denial of service out- of-bounds heap read and crash via a crafted file...

5.5CVSS6.7AI score0.01297EPSS
Exploits0References3
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.44 views

CVE-2017-5834 affecting package libplist 2.1.0-4

CVE-2017-5834 affecting package libplist 2.1.0-4. No patch is available currently...

5.5CVSS7.1AI score0.01297EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.16 views

RHEL 6 : libplist (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libplist: Out-of-bounds heap buffer read in plistutil CVE-2017-5545 - The parsedictnode function in...

9.1CVSS6.4AI score0.03768EPSS
Exploits6References11
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.17 views

RHEL 7 : libplist (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libplist: Out-of-bounds heap buffer read in plistutil CVE-2017-5545 - The parsedictnode function in...

9.1CVSS6.4AI score0.03768EPSS
Exploits6References11
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.14 views

Mageia: Security Advisory (MGASA-2018-0025)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.7AI score0.03768EPSS
Exploits6References5
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2017:1379-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.8AI score0.03768EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.13 views

SUSE: Security Advisory (SUSE-SU-2017:1368-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS7.8AI score0.03768EPSS
Exploits1References10
OpenVAS
OpenVAS
added 2020/04/03 12:0 a.m.58 views

Debian: Security Advisory (DLA-2168-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS6.9AI score0.03768EPSS
Exploits3References3
Debian
Debian
added 2020/04/02 8:2 a.m.82 views

[SECURITY] [DLA 2168-1] libplist security update

Package : libplist Version : 1.11-3+deb8u1 CVE ID : CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-6435 CVE-2017-6436 CVE-2017-6439 CVE-2017-7982 Debian Bug : 851196 852385 854000 860945 libplist is a library for reading and writing the Apple binary and XML property lists format...

9.1CVSS7.6AI score0.03768EPSS
Exploits3
Slackware Linux
Slackware Linux
added 2017/11/17 4:9 a.m.19 views

[slackware-security] libplist

New libplist packages are available for Slackware 14.2 and -current to fix security issues. Here are the details from the Slackware 14.2 ChangeLog: patches/packages/libplist-2.0.0-i586-1slack14.2.txz: Upgraded. This update fixes several security issues. For more information, see:...

9.1CVSS7AI score0.03768EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2017/05/24 12:0 a.m.19 views

SUSE SLED12 / SLES12 Security Update : libplist (SUSE-SU-2017:1379-1)

This update for libplist fixes the following issues : - CVE-2017-5209: The base64decode function in libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via split encoded Apple Property List data bsc1019531. - CVE-2017-5545:...

9.1CVSS6.5AI score0.03768EPSS
Exploits1References22
OSV
OSV
added 2017/05/23 1:38 p.m.8 views

SUSE-SU-2017:1379-1 Security update for libplist

This update for libplist fixes the following issues: - CVE-2017-5209: The base64decode function in libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via split encoded Apple Property List data bsc1019531. - CVE-2017-5545: T...

9.1CVSS6.7AI score0.03768EPSS
Exploits1References15
Tenable Nessus
Tenable Nessus
added 2017/05/23 12:0 a.m.22 views

SUSE SLED12 / SLES12 Security Update : libplist (SUSE-SU-2017:1368-1)

This update for libplist fixes the following security issues : - CVE-2017-5545: The main function in plistutil.c in libimobiledevice libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via Apple Property List data that is to...

9.1CVSS6.3AI score0.03768EPSS
Exploits1References22
Tenable Nessus
Tenable Nessus
added 2017/05/16 12:0 a.m.23 views

Fedora 25 : libplist (2017-4047180cd3)

Version 2.0.0 Changes : - New light-weight custom XML parser - Remove libxml2 dependency - Refactor binary plist parsing - Improved malformed XML and binary plist detection and error handling - Add parser debug/error output when compiled with --enable-debug, controlled via environment variables -...

9.1CVSS6.5AI score0.03768EPSS
Exploits6References12
ArchLinux
ArchLinux
added 2017/05/16 12:0 a.m.24 views

[ASA-201705-18] libplist: multiple issues

Arch Linux Security Advisory ASA-201705-18 ========================================== Severity: High Date : 2017-05-16 CVE-ID : CVE-2017-5209 CVE-2017-5545 CVE-2017-5834 CVE-2017-5835 CVE-2017-5836 CVE-2017-6435 CVE-2017-6436 CVE-2017-6437 CVE-2017-6438 CVE-2017-6439 CVE-2017-6440 Package :...

9.1CVSS3.3AI score0.03768EPSS
Exploits6References24
OSV
OSV
added 2017/03/03 3:59 p.m.7 views

CVE-2017-5834

The parsedictnode function in bplist.c in libplist allows attackers to cause a denial of service out-of-bounds heap read and crash via a crafted file...

5.5CVSS7.8AI score
Exploits0References5
CVE
CVE
added 2017/03/03 3:0 p.m.208 views

CVE-2017-5834

CVE-2017-5834 affects the libplist library. The parse_dict_node function in bplist.c can cause a denial of service via an out-of-bounds heap read/crash when presented with a crafted plist file. Some advisories note upstream fixes in later libplist releases (e.g., 2.0.0+), with distributions like ...

5.5CVSS6.4AI score0.01297EPSS
Exploits0References5Affected Software1
Debian
Debian
added 2017/02/28 2:52 p.m.22 views

[SECURITY] [DLA 840-1] libplist security update

Package : libplist Version : 1.8-1+deb7u2 CVE ID : CVE-2017-5834 CVE-2017-5835 Debian Bug : 854000 Several vulnerabilities were discovered in libplist, a library for reading and writing the Apple binary and XML property lists format. A maliciously crafted plist file could cause an application to...

7.5CVSS8.3AI score0.02926EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/02/21 12:0 a.m.21 views

openSUSE Security Update : libplist (openSUSE-2017-283)

This update for libplist fixes the following issues : - CVE-2017-5209: The base64decode function in libplist allowed attackers to obtain sensitive information from process memory or cause a denial of service buffer over-read via split encoded Apple Property List data bsc1019531. - CVE-2017-5834: ...

9.1CVSS7AI score0.02926EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2017/02/02 9:47 a.m.18 views

CVE-2017-5834

The parsedictnode function in bplist.c in libplist allows attackers to cause a denial of service out-of-bounds heap read and crash via a crafted file...

5.5CVSS4AI score0.01297EPSS
Exploits0References1
Rows per page
Query Builder