Lucene search
K

160 matches found

AlmaLinux
AlmaLinux
added 2019/11/05 5:48 p.m.18 views

libcdio bug fix and enhancement update

For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...

1.6AI score
Exploits0References1
Rockylinux
Rockylinux
added 2019/11/05 5:48 p.m.12 views

libcdio bug fix and enhancement update

An update is available for libcdio. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.1...

2.1AI score
Exploits0
RedhatCVE
RedhatCVE
added 2019/10/08 10:5 p.m.23 views

CVE-2017-18198

A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS...

8.8CVSS1.2AI score0.03553EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.22 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : libcdio Multiple Vulnerabilities (NS-SA-2019-0043)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libcdio packages installed that are affected by multiple vulnerabilities: - A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applicatio...

9.8CVSS6.9AI score0.03553EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/07/02 12:0 a.m.31 views

EulerOS 2.0 SP5 : libcdio (EulerOS-SA-2019-1682)

According to the version of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 Note that Tenable Network Security has extracted...

8.8CVSS7.2AI score0.03553EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/27 12:0 a.m.21 views

openSUSE Security Update : libcdio (openSUSE-2019-599)

This update for libcdio fixes the following issues : The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc108287...

9.8CVSS6.8AI score0.03455EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2019/01/25 12:0 a.m.22 views

Amazon Linux 2 : libcdio (ALAS-2019-1151)

A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS.CVE-2017-18198 A double-free flaw was found in the wa...

9.8CVSS6.8AI score0.03553EPSS
Exploits1References4
Amazon
Amazon
added 2019/01/23 12:0 a.m.25 views

Low: libcdio

Issue Overview: A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS.CVE-2017-18198 A double-free flaw was...

9.8CVSS8.1AI score0.03553EPSS
Exploits1
Veracode
Veracode
added 2019/01/15 9:26 a.m.14 views

Denial Of Service (DoS)

libcdio is vulnerable to denial of service. A heap-based buffer over-read in printiso9660recurse function in iso-info.c allows a remote attacker to crash the process using a malicious iso file...

8.8CVSS7.6AI score0.03553EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.23 views

SUSE SLED15 / SLES15 Security Update : libcdio (SUSE-SU-2018:2236-1)

This update for libcdio fixes the following issues: The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc1082877...

9.8CVSS6.8AI score0.03455EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/12/28 12:0 a.m.18 views

EulerOS 2.0 SP2 : libcdio (EulerOS-SA-2018-1418)

According to the versions of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in...

8.8CVSS6.8AI score0.03553EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2018/12/10 12:0 a.m.19 views

EulerOS 2.0 SP3 : libcdio (EulerOS-SA-2018-1390)

According to the versions of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in...

9.8CVSS7.2AI score0.03553EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/11/27 12:0 a.m.15 views

Scientific Linux Security Update : libcdio on SL7.x x86_64 (20181030)

Security Fixes : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in reallocsymlink in rock.c CVE-2017-18199 - libcdio: Double free in getcdtextgeneric in lib/driver/cdiogeneric.c CVE-2017-18201 C Tenable Netwo...

9.8CVSS7.1AI score0.03553EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/11/16 12:0 a.m.28 views

CentOS 7 : libcdio (CESA-2018:3246)

An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS7.2AI score0.03553EPSS
Exploits1References4
Cent OS
Cent OS
added 2018/11/15 6:48 p.m.70 views

libcdio security update

CentOS Errata and Security Advisory CESA-2018:3246 An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...

9.8CVSS6.8AI score0.03553EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2018/11/07 12:0 a.m.32 views

Oracle Linux 7 : libcdio (ELSA-2018-3246)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3246 advisory. - fix CVE-2017-18198 and CVE-2017-18199 - fix CVE-2017-18201 Tenable has extracted the preceding description block directly from the Oracle Linux...

9.8CVSS7.1AI score0.03553EPSS
Exploits1References4
Oracle linux
Oracle linux
added 2018/11/05 12:0 a.m.506 views

libcdio security update

0.92-3 - fix CVE-2017-18198 and CVE-2017-18199 - Resolves: rhbz1553769 - Resolves: rhbz1553604 0.92-2 - fix CVE-2017-18201 - Resolves: rhbz1553621...

9.8CVSS1.9AI score0.03553EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/10/31 12:0 a.m.75 views

RHEL 7 : libcdio (RHSA-2018:3246)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3246 advisory. The libcdio library provides an interface for CD-ROM access. It can be used by applications that need OS- independent and device-independent...

9.8CVSS7.4AI score0.03553EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2018/10/30 8:44 a.m.3 views

libcdio: Double free in get_cdtext_generic() in lib/driver/_cdio_generic.c

A double-free flaw was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files...

9.8CVSS5.8AI score0.03426EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2018/10/30 8:44 a.m.79 views

Low: Red Hat Security Advisory: libcdio security update

An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

9.8CVSS6.8AI score0.03553EPSS
Exploits1References5
Rows per page
Query Builder