Lucene search
K

7 matches found

Ubuntu
Ubuntu
added 2026/03/09 4:6 p.m.10 views

USN-8080-1: YARA vulnerabilities

Kamil Frankowicz discovered that a number of YARA's functions generated memory exceptions when processing specially crafted rules or files. A remote attacker could possibly use these issues to cause YARA to crash, resulting in a denial of service. These issues only affected Ubuntu 16.04 LTS...

9.1CVSS7.2AI score0.02996EPSS
Exploits12
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.20 views

Fedora 28 : yara (2018-8344cb89ac)

bump to 3.8.1, fix CVE-2018-12034 and CVE-2018-12035 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

7.8CVSS7.2AI score0.01243EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2018/09/06 12:0 a.m.20 views

Fedora Update for yara FEDORA-2018-7626df1731

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.01243EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2018/09/06 12:0 a.m.24 views

Fedora 27 : yara (2018-7626df1731)

bump to 3.8.1, fix CVE-2018-12034 and CVE-2018-12035 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issue...

7.8CVSS7.2AI score0.01243EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2018/09/06 12:0 a.m.21 views

Fedora Update for yara FEDORA-2018-8344cb89ac

The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.6AI score0.01243EPSS
Exploits2References2
NVD
NVD
added 2018/06/15 4:29 p.m.15 views

CVE-2018-12035

In YARA 3.7.1 and prior, parsing a specially crafted compiled rule file can cause an out of bounds write vulnerability in yrexecutecode in libyara/exec.c...

7.8CVSS7.6AI score0.01243EPSS
Exploits1References3
CVE
CVE
added 2018/06/15 4:0 p.m.59 views

CVE-2018-12035

CVE-2018-12035 affects YARA up to version 3.7.1, where parsing a specially crafted compiled rule file can trigger an out-of-bounds write in yr_execute_code (libyara/exec.c). Reported metrics indicate CVSS v3 base score 7.8 (HIGH) with LOCAL exploitability and user interaction required; CVSS v2 ba...

7.8CVSS7.5AI score0.01243EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder