Lucene search
+L

5 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.13 views

Mageia: Security Advisory (MGASA-2019-0396)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.5AI score0.0163EPSS
Exploits1References4
OSV
OSV
added 2019/12/19 1:44 p.m.18 views

MGASA-2019-0396 Updated flightcrew packages fix security vulnerabilities

The updated packages fix security vulnerabilities: An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx or GetRelativePathsToXhtmlDocuments when a NULL pointer is passed to xc::XMLUri::isValidURI. This affects third-party software not...

7.8CVSS6AI score0.0163EPSS
Exploits1References3
Mageia
Mageia
added 2019/12/19 1:44 p.m.40 views

Updated flightcrew packages fix security vulnerabilities

The updated packages fix security vulnerabilities: An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx or GetRelativePathsToXhtmlDocuments when a NULL pointer is passed to xc::XMLUri::isValidURI. This affects third-party software not...

7.8CVSS2AI score0.0163EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2019/07/15 1:42 p.m.101 views

USN-4055-1: flightcrew vulnerabilities

Mike Salvatore discovered that FlightCrew improperly handled certain malformed EPUB files. An attacker could potentially use this vulnerability to cause a denial of service. CVE-2019-13032 Mike Salvatore discovered that FlightCrew mishandled certain malformed EPUB files. An attacker could use thi...

7.8CVSS6.6AI score0.02026EPSS
Exploits1
CVE
CVE
added 2019/07/04 2:31 p.m.77 views

CVE-2019-13241

FlightCrew v0.9.2 and older are affected by CVE-2019-13241 (directory traversal: can write arbitrary files via a ../ in a ZIP entry during extraction). Mageia advisories and Ubuntu USN entries also reference CVE-2019-13241 and confirm that updates fix these flaws; CVE-2019-13032 is a NULL pointer...

7.8CVSS7.4AI score0.0163EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder