6 matches found
CVE-2018-1000221
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...
CVE-2018-1000221
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...
CVE-2018-1000221
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...
CVE-2018-1000221
Affected software: pkgconf up to version 1.5.2. Vulnerability: buffer overflow in dequote() when initial length is 0, potentially leading to overflow through a specially crafted .pc file. Impact/Severity: reported as high/critical in CVSS terms (C/H/I/H/A/H per provided metrics). Status/Fix: vuln...
CVE-2018-1000221
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...
CVE-2018-1000221
pkgconf version 1.5.0 to 1.5.2 contains a Buffer Overflow vulnerability in dequote that can result in dequote function returns 1-byte allocation if initial length is 0, leading to buffer overflow. This attack appear to be exploitable via specially crafted .pc file. This vulnerability appears to...