7 matches found
Linux Distros Unpatched Vulnerability : CVE-2021-40391
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of...
[SECURITY] [DLA 2839-1] gerbv security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-2839-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky December 03, 2021 https://wiki.debian.org/LTS -...
CVE-2021-40391
An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger thi...
CVE-2021-40391
An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger thi...
UBUNTU-CVE-2021-40391
An out-of-bounds write vulnerability exists in the drill format T-code tool number functionality of Gerbv 2.7.0, dev commit b5f1eacd, and the forked version of Gerbv commit 71493260. A specially-crafted drill file can lead to code execution. An attacker can provide a malicious file to trigger thi...
CVE-2021-40391
Gerbv 2.7.0, dev (commit b5f1eacd) and forks are affected by an out-of-bounds write in the drill format T-code tool number functionality, enabling code execution via a crafted drill file. Connected notes (e.g., Mageia MGASA-2022-0260 and related advisories) confirm this CVE-2021-40391 issue and d...
Remote Code Execution (RCE)
gerbv is vulnerable to remote code execution. The vulnerability exists due to a boundary error when processing untrusted input in the drill format T-code tool number functionality...