24 matches found
EUVD-2017-9332
Malware in sbrugna...
EUVD-2017-9334
Malware in sbrugna...
EUVD-2017-9331
Malware in sbrugna...
GNU libcdio Buffer Overflow Vulnerability
GNU libcdio is a library developed by the GNU Project for accessing CD-ROMs and CD images, and is mainly used to handle CD-ROM file system reading, directory structure parsing and other functions. A buffer overflow vulnerability exists in GNU libcdio, which can be exploited by an attacker to...
SUSE CVE-2017-18198
printiso9660recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted iso file...
GNU libcdio 'get_cdtext_generic()' function double release vulnerability
GNU libcdio is a CD-ROM input and control library that contains a library of functions for accessing CD-ROMs and CD images. A security vulnerability exists in the 'getcdtextgeneric' function in the lib/driver/cdiogeneric.c file in GNU libcdio versions prior to 2.0.0. A local attacker can exploit...
Double free
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
CVE-2017-18201
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
CVE-2017-18201
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
CVE-2017-18201
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
CVE-2017-18201
CVE-2017-18201 describes a double-free in libcdio's get_cdtext_generic() in lib/driver/_cdio_generic.c, affecting libcdio up to versions prior to 2.0.0. The connected advisories (SUSE, Amazon Linux 2, CentOS/RHEL, EulerOS, etc.) indicate this issue was fixed in their respective libcdio updates (e...
CVE-2017-18201
An issue was discovered in GNU libcdio before 2.0.0. There is a double free in getcdtextgeneric in lib/driver/cdiogeneric.c...
CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
Null pointer dereference
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
DEBIAN-CVE-2017-18198
printiso9660recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted iso file...
CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
CVE-2017-18198
printiso9660recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service heap-based buffer over-read or possibly have unspecified other impact via a crafted iso file...
CVE-2017-18199
reallocsymlink in rock.c in GNU libcdio before 1.0.0 allows remote attackers to cause a denial of service NULL Pointer Dereference via a crafted iso file...
CVE-2017-18199
CVE-2017-18199 affects libcdio (GNU) via realloc_symlink in rock.c. A NULL pointer dereference can be triggered by processing a crafted ISO file, enabling remote denial of service. The vulnerability is present in libcdio versions before 1.0.0. Remediation: upgrade to libcdio 1.0.0 or newer (vendo...