6 matches found
openSUSE 15 Security Update : multimon-ng (openSUSE-SU-2023:0004-1)
The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2023:0004-1 advisory. - A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function addch of the file demodflex.c. The...
OPENSUSE-SU-2023:0004-1 Security update for multimon-ng
This update for multimon-ng fixes the following issues: - Update to new upstream release 1.2.0 Separated FLEX and FLEXNEXT. The former is identical to 1.1.9, while FLEXNEXT gained new features, as well as known regressions. See 168 Fix CVE-2020-36619 boo1206542 Several smaller POCSAG fixes. Fix f...
Security update for multimon-ng (moderate)
openSUSE Security Update: Security update for multimon-ng Announcement ID: openSUSE-SU-2023:0004-1 Rating: moderate References: 1206542 Cross-References: CVE-2020-36619 CVSS scores: CVE-2020-36619 NVD : 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Affected Products: openSUSE Backports...
OPENSUSE-SU-2022:10253-1 Security update for multimon-ng
This update for multimon-ng fixes the following issues: - Update to new upstream release 1.2.0 Separated FLEX and FLEXNEXT. The former is identical to 1.1.9, while FLEXNEXT gained new features, as well as known regressions. See 168 Fix CVE-2020-36619 boo1206542 Several smaller POCSAG fixes. Fix f...
CVE-2020-36619
CVE-2020-36619 affects multimon-ng, specifically the function add_ch in demod_flex.c. The issue arises from manipulating the argument ch, which leads to a format string vulnerability. The exploitation impact is described as high across confidentiality, integrity, and availability, with a base sco...
CVE-2020-36619 multimon-ng demod_flex.c add_ch format string
A vulnerability was found in multimon-ng. It has been rated as critical. This issue affects the function addch of the file demodflex.c. The manipulation of the argument ch leads to format string. Upgrading to version 1.2.0 is able to address this issue. The name of the patch is...