9 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-20721
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - URIFUNC in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read in uriParseEx functions for an incomplete URI with an IPv6 address containing an...
Ubuntu 16.04 ESM : uriparser vulnerability (USN-5172-2)
The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5172-2 advisory. USN-5172-1 fixed vulnerabilities in uriparser. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Tenable has...
USN-5172-2: uriparser vulnerability
USN-5172-1 fixed vulnerabilities in uriparser. This update provides the corresponding updates for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that uriparser mishandled certain input. An attacker could use this vulnerability to cause uriparser to crash or...
USN-5172-1: uriparser vulnerabilities
It was discovered that uriparser mishandled certain input. An attacker could use this vulnerability to cause uriparser to crash or possibly execute arbitrary code. CVE-2018-19198, CVE-2018-19199, CVE-2018-19200 It was discovered that uriparser incorrectly handled certain URIs. An attacker could u...
Debian: Security Advisory (DLA-1682-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : uriparser (openSUSE-2019-165)
This update for uriparser fixes the following issues : Security issues fixed : - CVE-2018-20721: Fixed an out-of-bounds read for incomplete URIs with IPv6 addresses with embedded IPv4 address bsc1122193. - CVE-2018-19198: Fixed an out-of-bounds write that was possible via the uriComposeQuery or...
CVE-2018-20721
URIFUNC in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read in uriParseEx functions for an incomplete URI with an IPv6 address containing an embedded IPv4 address, such as a "//::44.1" address...
CVE-2018-20721
URIFUNC in UriParse.c in uriparser before 0.9.1 has an out-of-bounds read in uriParseEx functions for an incomplete URI with an IPv6 address containing an embedded IPv4 address, such as a "//::44.1" address...
CVE-2018-20721
CVE-2018-20721 affects uriparser prior to 0.9.1, where URI_FUNC() in UriParse.c and the uriParseEx routines mishandle an incomplete IPv6 URI containing an embedded IPv4 address (example: //[::44.1). This triggers an out-of-bounds read in the parsing flow. The description indicates the issue is in...