Lucene search
K

17 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 8 : libsolv-0.7.11-1.el8 (AXSA:2021-1307:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2021-1307:01 advisory. libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-20387 Tenable has extracted the preceding description block directly from the...

7.5CVSS8.4AI score0.02338EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2019-20387

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input...

7.5CVSS6.8AI score0.02338EPSS
Exploits0References3
Rosalinux
Rosalinux
added 2021/07/02 5:16 p.m.29 views

Advisory ROSA-SA-2021-1891

Software: libsolv 0.6.34 OS: Cobalt 7.9 CVE-ID: CVE-2019-20387 CVE-Crit: HIGH CVE-DESC: repodataschema2id in repodata.c in libsolv before version 0.7.6 has an excessive heap-based buffer read due to the last schema being less than the length of the input schema. CVE-STATUS: default CVE-REV: defau...

7.5CVSS7.3AI score0.02338EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/06/28 12:0 a.m.31 views

SUSE SLES12: libsolv-devel / libsolv-tools / libzypp / libzypp-devel / perl-solv / etc (SUSE-SU-2021:2145-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:2145-1 advisory. Security issues fixed: - CVE-2019-20387: Fixed heap-buffer-overflow in repodataschema2id bsc1161510 - CVE-2021-3200: testcaseread:...

7.5CVSS6.7AI score0.02338EPSS
Exploits1References7
OpenVAS
OpenVAS
added 2021/06/24 12:0 a.m.22 views

SUSE: Security Advisory (SUSE-SU-2021:2145-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.4AI score0.02338EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.39 views

NewStart CGSL MAIN 6.02 : libsolv Vulnerability (NS-SA-2021-0060)

The remote NewStart CGSL host, running version MAIN 6.02, has libsolv packages installed that are affected by a vulnerability: - repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5CVSS6.9AI score0.02338EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/02/01 12:0 a.m.48 views

CentOS 8 : libsolv (CESA-2020:4508)

The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2020:4508 advisory. - libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-20387 Note that Nessus has not tested for this issue but has instead relied only on th...

7.5CVSS6.6AI score0.02338EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/11/04 12:0 a.m.31 views

RHEL 8 : libsolv (RHSA-2020:4508)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:4508 advisory. The libsolv packages provide a library for resolving package dependencies using a satisfiability algorithm. The following packages have been upgraded...

7.5CVSS6.8AI score0.02338EPSS
Exploits0References8
AlmaLinux
AlmaLinux
added 2020/11/03 12:11 p.m.35 views

Moderate: libsolv security, bug fix, and enhancement update

The libsolv packages provide a library for resolving package dependencies using a satisfiability algorithm. The following packages have been upgraded to a later upstream version: libsolv 0.7.11. BZ1809106 Security Fixes: libsolv: out-of-bounds read in repodataschema2id in repodata.c CVE-2019-2038...

5CVSS1.4AI score0.02338EPSS
Exploits0References1
Mageia
Mageia
added 2020/03/06 4:13 p.m.42 views

Updated libsolv packages fix security vulnerability

Updated libsolv packages fix security vulnerability: An out-of-bounds read was discovered in libsolv when the last schema has a length that is less than the length of the input schema. A remote attacker may abuse this flaw to crash an application that uses libsolv CVE-2019-20387...

7.5CVSS7.5AI score0.02338EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2020/02/20 12:0 a.m.24 views

Photon OS 3.0: Libsolv PHSA-2020-3.0-0057

An update of the libsolv package has been released. C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2020-3.0-0057. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid133807;...

7.5CVSS6.8AI score0.02338EPSS
Exploits0References2
Debian
Debian
added 2020/01/30 6:3 p.m.53 views

[SECURITY] [DLA 2088-1] libsolv security update

Package : libsolv Version : 0.6.5-1+deb8u1 CVE ID : CVE-2019-20387 Debian Bug : 949611 repodataschema2id in repodata.c in libsolv, a dependency solver library, had a heap-based buffer over-read via a last schema whose length could be less than the length of the input schema. For Debian 8 "Jessie"...

7.5CVSS6.9AI score0.02338EPSS
Exploits0
NVD
NVD
added 2020/01/21 11:15 p.m.26 views

CVE-2019-20387

repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5CVSS7.6AI score0.02338EPSS
Exploits0References3
OSV
OSV
added 2020/01/21 11:15 p.m.16 views

CVE-2019-20387

repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5CVSS6.7AI score
Exploits0References3
Cvelist
Cvelist
added 2020/01/21 10:54 p.m.25 views

CVE-2019-20387

repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5AI score0.02338EPSS
Exploits0References3
CVE
CVE
added 2020/01/21 10:54 p.m.181 views

CVE-2019-20387

CVE-2019-20387: heap-based buffer over-read in repodata_schema2id() of libsolv (repodata.c) causing potential crash. Affected: Cloud Pak for Security (CP4S) versions 1.8.1.0, 1.8.0.0, 1.7.2.0. Root cause: last schema length shorter than input schema leading to over-read. Remediation: upgrade to C...

7.5CVSS7.4AI score0.02338EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2020/01/21 10:54 p.m.26 views

CVE-2019-20387

repodataschema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema...

7.5CVSS6.4AI score0.02338EPSS
Exploits0
Rows per page
Query Builder