6 matches found
Linux Distros Unpatched Vulnerability : CVE-2018-3846
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting...
Mageia: Security Advisory (MGASA-2019-0133)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
GLSA-202101-24 : cfitsio: Multiple vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202101-24 cfitsio: Multiple vulnerabilities Multiple vulnerabilities have been discovered in cfitsio. Please review the CVE identifiers referenced below for details. Impact : Please review the referenced CVE identifiers for detail...
Buffer overflow
NASA CFITSIO prior to 3.43 is affected by: Buffer Overflow. The impact is: arbitrary code execution. The component is: over 40 source code files were changed. The attack vector is: remote unauthenticated attacker. The fixed version is: 3.43. NOTE: this CVE refers to the issues not covered by...
Fedora 28 : cfitsio (2019-3c1aed2aa9)
This update backports security fixes from cfitsio 3.440 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional...
CVE-2018-3846
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution...