Lucene search
K

5 matches found

Ubuntu
Ubuntu
added 2026/03/09 4:6 p.m.9 views

USN-8080-1: YARA vulnerabilities

Kamil Frankowicz discovered that a number of YARA's functions generated memory exceptions when processing specially crafted rules or files. A remote attacker could possibly use these issues to cause YARA to crash, resulting in a denial of service. These issues only affected Ubuntu 16.04 LTS...

9.1CVSS7.2AI score0.02996EPSS
Exploits12
SUSE CVE
SUSE CVE
added 2023/02/15 4:21 a.m.2 views

SUSE CVE-2018-19976

In YARA 3.8.1, bytecode in a specially crafted compiled rule is exposed to information about its environment, in libyara/exec.c. This is a consequence of the design of the YARA virtual machine...

5.5CVSS5.2AI score0.01276EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2019/01/08 12:0 a.m.24 views

YARA <= 3.8.1 Multiple Vulnerabilities

YARA is prone to multiple vulnerabilities. Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribu...

7.1CVSS5.5AI score0.01359EPSS
Exploits3References4
OSV
OSV
added 2018/12/17 7:29 p.m.4 views

UBUNTU-CVE-2018-19976

In YARA 3.8.1, bytecode in a specially crafted compiled rule is exposed to information about its environment, in libyara/exec.c. This is a consequence of the design of the YARA virtual machine...

5.5CVSS6.7AI score0.01276EPSS
Exploits1References6
CVE
CVE
added 2018/12/17 6:0 p.m.55 views

CVE-2018-19976

CVE-2018-19976 involves YARA 3.8.1 where bytecode in a specially crafted compiled rule can reveal information about the host environment via libyara/exec.c, a consequence of how the YARA VM is designed. Public descriptions in CNVD and OSV confirm an environment-information exposure vulnerability ...

5.5CVSS5.1AI score0.01276EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder