80 matches found
OESA-2022-1928 libconfuse security update
libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...
Fedora: Security Advisory for libconfuse (FEDORA-2022-de992c68d0)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Fedora: Security Advisory for libconfuse (FEDORA-2022-9b67d67195)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
SUSE SLES12 Security Update : libconfuse0 (SUSE-SU-2022:3331-1)
The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3331-1 advisory. - cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. CVE-2022-40320 Note that Nessus has not tested for this...
[SECURITY] Fedora 35 Update: libconfuse-3.3-7.fc35
libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...
[SECURITY] Fedora 36 Update: libconfuse-3.3-7.fc36
libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...
The vulnerability of the cfg_tilde_expand() function in the libConfuse configuration file parser library allows a attacker to cause a service failure.
The vulnerability of the cfgtildeexpand function in the libConfuse configuration file parser library is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures through a specially created file...
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read.
...
[SECURITY] Fedora 37 Update: libconfuse-3.3-7.fc37
libConfuse is a configuration file parser library, licensed under the terms of the ISC license, and written in C. It supports sections and lists of values strings, integers, floats, booleans or other sections, as well as some other features such as single/double-quoted strings, environment variab...
Fedora: Security Advisory for libconfuse (FEDORA-2022-645dc53ee2)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
ROS-20220914-01
A vulnerability in the libConfuse configuration file parser library is related to a buffer overflow in the function cfgtildeexpand in confuse.c. Exploitation of the vulnerability could allow an attacker acting remotely, transmit a specially crafted file to the system, causing a buffer overflow an...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
DEBIAN-CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
AZL-10925 CVE-2022-40320 affecting package libconfuse for versions less than 3.3-2
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
AZL-34910 CVE-2022-40320 affecting package libconfuse for versions less than 3.3-2
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
Heap overflow
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...
UBUNTU-CVE-2022-40320
cfgtildeexpand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read...