RHEL 6 : libical (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libical: Use-after-free CVE-2016-9584 - The icalparserparsestring function in libical 0.47 and 1.0 allows...

SUSE CVE-2016-5827

The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the icalparserparsestring function...

EulerOS 2.0 SP3 : libical (EulerOS-SA-2019-2607)

According to the versions of the libical packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libical allows remote attackers to cause a denial of service use-after-free and possibly read heap memory via a crafted ics file.CVE-2016-9584 ...

Denial Of Service (DoS)

libical.so is vulnerable to denial of service attacks. The library does not properly parse strings in the icalparserparsestring function, allowing a malicious user to pass a string to cause an out-of-bounds read that can crash the application...

SUSE SLES11 Security Update : Recommended update for libical (SUSE-SU-2018:0119-1)

This update for libical fixes the following issues: Security issues fixed : - CVE-2016-5823: The icalpropertynewclone function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service use-after-free via a crafted ics file. bnc986632 - CVE-2016-5824: libical 1.0 allows remote...

SUSE SLED12 / SLES12 Security Update : libical (SUSE-SU-2017:1989-1)

This update for libical fixes the following issues: Security issues fixed : - CVE-2016-5824: libical 1.0 allows remote attackers to cause a denial of service use-after-free via a crafted ics file. bsc986639 - CVE-2016-5827: The icaltimefromstring function in libical 0.47 and 1.0 allows remote...

CVE-2016-5826

The parsergetnextchar function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read by crafting a string to the icalparserparsestring function...

CVE-2016-5825

The icalparserparsestring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted ics file...

UBUNTU-CVE-2016-5827

The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the icalparserparsestring function...

Design/Logic Flaw

The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the icalparserparsestring function...

UBUNTU-CVE-2016-5826

The parsergetnextchar function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read by crafting a string to the icalparserparsestring function...

CVE-2016-5825

The icalparserparsestring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted ics file...

CVE-2016-5827

The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the icalparserparsestring function...

Out-of-bounds

The icalparserparsestring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted ics file...

Out-of-bounds

The parsergetnextchar function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read by crafting a string to the icalparserparsestring function...

CVE-2016-5827

The icaltimefromstring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted string to the icalparserparsestring function...

CVE-2016-5826

Removed by vendor...

CVE-2016-5825

Removed by vendor...

CVE-2016-5825

CVE-2016-5825 affects libical (component icalparser_parse_string) with out-of-bounds heap read via crafted ICS files. Impacted versions include libical 0.47 and 1.0; vendor advisories (e.g., Red Hat, SUSE) reference unpatched status or pending fixes. Remediation: update to patched libical version...

CVE-2016-5825

The icalparserparsestring function in libical 0.47 and 1.0 allows remote attackers to cause a denial of service out-of-bounds heap read via a crafted ics file...