17 matches found
MiracleLinux 8 : libsolv-0.7.11-1.el8 (AXSA:2021-1307:01)
The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1307:01 advisory. libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-20387 Tenable has extracted the preceding description block directly from the...
Linux Distros Unpatched Vulnerability : CVE-2019-20387
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input...
Advisory ROSA-SA-2021-1891
Software: libsolv 0.6.34 OS: Cobalt 7.9 CVE-ID: CVE-2019-20387 CVE-Crit: HIGH CVE-DESC: repodataschema2id in repodata.c in libsolv before version 0.7.6 has an excessive heap-based buffer read due to the last schema being less than the length of the input schema. CVE-STATUS: default CVE-REV: defau...
SUSE SLES12: libsolv-devel / libsolv-tools / libzypp / libzypp-devel / perl-solv / etc (SUSE-SU-2021:2145-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2145-1 advisory. Security issues fixed: - CVE-2019-20387: Fixed heap-buffer-overflow in repodataschema2id bsc1161510 - CVE-2021-3200: testcaseread:...
SUSE: Security Advisory (SUSE-SU-2021:2145-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
NewStart CGSL MAIN 6.02 : libsolv Vulnerability (NS-SA-2021-0060)
The remote NewStart CGSL host, running version MAIN 6.02, has libsolv packages installed that are affected by a vulnerability: - repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...
CentOS 8 : libsolv (CESA-2020:4508)
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:4508 advisory. - libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-20387 Note that Nessus has not tested for this issue but has instead relied only on th...
RHEL 8 : libsolv (RHSA-2020:4508)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4508 advisory. The libsolv packages provide a library for resolving package dependencies using a satisfiability algorithm. The following packages have been upgraded...
Moderate: libsolv security, bug fix, and enhancement update
The libsolv packages provide a library for resolving package dependencies using a satisfiability algorithm. The following packages have been upgraded to a later upstream version: libsolv 0.7.11. BZ1809106 Security Fixes: libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-2038...
Updated libsolv packages fix security vulnerability
Updated libsolv packages fix security vulnerability: An out-of-bounds read was discovered in libsolv when the last schema has a length that is less than the length of the input schema. A remote attacker may abuse this flaw to crash an application that uses libsolv CVE-2019-20387...
Photon OS 3.0: Libsolv PHSA-2020-3.0-0057
An update of the libsolv package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0057. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid133807;...
[SECURITY] [DLA 2088-1] libsolv security update
Package : libsolv Version : 0.6.5-1+deb8u1 CVE ID : CVE-2019-20387 Debian Bug : 949611 repodataschema2id in repodata.c in libsolv, a dependency solver library, had a heap-based buffer over-read via a last schema whose length could be less than the length of the input schema. For Debian 8 "Jessie"...
CVE-2019-20387
repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...
CVE-2019-20387
repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...
CVE-2019-20387
repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...
CVE-2019-20387
CVE-2019-20387: heap-based buffer over-read in repodata_schema2id() of libsolv (repodata.c) causing potential crash. Affected: Cloud Pak for Security (CP4S) versions 1.8.1.0, 1.8.0.0, 1.7.2.0. Root cause: last schema length shorter than input schema leading to over-read. Remediation: upgrade to C...
CVE-2019-20387
repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...