Lucene search
K

17 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 4:14 a.m.3 views

SUSE CVE-2019-9578

In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device...

2.1CVSS7AI score0.02296EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2022/05/20 11:56 p.m.30 views

CVE-2019-9578

In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device...

7.5CVSS4.9AI score0.02296EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/07/16 12:0 a.m.44 views

openSUSE 15 Security Update : libu2f-host (openSUSE-SU-2021:1755-1)

The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1755-1 advisory. - Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An...

7.5CVSS7.2AI score0.02296EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.23 views

SUSE: Security Advisory (SUSE-SU-2021:1755-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02296EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/06/01 12:0 a.m.35 views

openSUSE Security Update : libu2f-host (openSUSE-2021-799)

This update for libu2f-host fixes the following issues : This update ships the u2f-host package jscECO-3687 bsc1184648 Version 1.1.10 released 2019-05-15 - Add new devices to udev rules. - Fix a potentially uninitialized buffer CVE-2019-9578, bsc1128140 Version 1.1.9 released 2019-03-06 - Fix CID...

7.5CVSS6.5AI score0.02296EPSS
Exploits0References6
OPENSUSE Linux
OPENSUSE Linux
added 2021/05/28 12:0 a.m.43 views

Security update for libu2f-host (moderate)

openSUSE Security Update: Security update for libu2f-host Announcement ID: openSUSE-SU-2021:0799-1 Rating: moderate References: 1124781 1128140 1184648 ECO-3687 Cross-References: CVE-2018-20340 CVE-2019-9578 CVSS scores: CVE-2018-20340 NVD : 6.8 CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H...

6.4CVSS7.5AI score0.02296EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2021/05/26 12:0 a.m.33 views

SUSE SLED15 / SLES15 Security Update : libu2f-host (SUSE-SU-2021:1755-1)

This update for libu2f-host fixes the following issues : This update ships the u2f-host package jscECO-3687 bsc1184648 Version 1.1.10 released 2019-05-15 Add new devices to udev rules. Fix a potentially uninitialized buffer CVE-2019-9578, bsc1128140 Version 1.1.9 released 2019-03-06 Fix CID copyi...

7.5CVSS6.6AI score0.02296EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2020/01/09 12:0 a.m.23 views

openSUSE: Security Advisory for libu2f-host, pam_u2f (openSUSE-SU-2019:1708-1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.1AI score0.02885EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.31 views

openSUSE Security Update : libu2f-host / pam_u2f (openSUSE-2019-1725)

This update for libu2f-host and pamu2f to version 1.0.8 fixes the following issues : Security issues fixed for libu2f-host : - CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response bsc1128140. Security issues fixed for pamu2f : - CVE-2019-12209: Fixed an issue where symlinks ...

8.1CVSS6.3AI score0.02885EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2019/07/22 12:0 a.m.39 views

openSUSE Security Update : libu2f-host / pam_u2f (openSUSE-2019-1708)

This update for libu2f-host and pamu2f to version 1.0.8 fixes the following issues : Security issues fixed for libu2f-host : - CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response bsc1128140. Security issues fixed for pamu2f : - CVE-2019-12209: Fixed an issue where symlinks ...

8.1CVSS6.3AI score0.02885EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2019/07/20 12:0 a.m.24 views

openSUSE: Security Advisory for libu2f-host, pam_u2f (openSUSE-SU-2019:1725-1)

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS6.1AI score0.02885EPSS
Exploits2References2
OSV
OSV
added 2019/07/19 3:59 p.m.8 views

OPENSUSE-SU-2019:1725-1 Security update for libu2f-host, pam_u2f

This update for libu2f-host and pamu2f to version 1.0.8 fixes the following issues: Security issues fixed for libu2f-host: - CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response bsc1128140. Security issues fixed for pamu2f: - CVE-2019-12209: Fixed an issue where symlinks in...

8.1CVSS7.6AI score0.02885EPSS
Exploits2References7
Tenable Nessus
Tenable Nessus
added 2019/07/05 12:0 a.m.28 views

SUSE SLED12 / SLES12 Security Update : libu2f-host (SUSE-SU-2019:1749-1)

This update for libu2f-host and pamu2f to version 1.0.8 fixes the following issues : Security issues fixed for libu2f-host : CVE-2019-9578: Fixed a memory leak due to a wrong parse of init's response bsc1128140. CVE-2018-20340: Fixed an unchecked buffer, which could allow a buffer overflow with a...

8.1CVSS6.3AI score0.02885EPSS
Exploits2References13
Tenable Nessus
Tenable Nessus
added 2019/05/02 12:0 a.m.35 views

Fedora 30 : libu2f-host (2019-fe6d1fbffa)

Security fix for CVE-2019-9578 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues. C Tenable Network...

7.5CVSS6.3AI score0.02296EPSS
Exploits0References2
NVD
NVD
added 2019/03/05 11:29 p.m.20 views

CVE-2019-9578

In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device...

7.5CVSS7.5AI score0.02296EPSS
Exploits0References8
OSV
OSV
added 2019/03/05 11:29 p.m.1 views

DEBIAN-CVE-2019-9578

In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device...

7.5CVSS6.9AI score0.02296EPSS
Exploits0References1
CVE
CVE
added 2019/03/05 11:0 p.m.180 views

CVE-2019-9578

Concrete details found: CVE-2019-9578 affects Yubico libu2f-host up to version 1.1.8, where the init response is misparsed, leaking uninitialized stack memory to the device. The issue is addressed in later OpenSUSE/SUSE advisories (e.g., libu2f-host 1.1.10) with a fix described as parsing the ini...

7.5CVSS7.3AI score0.02296EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder