160 matches found
libcdio bug fix and enhancement update
For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section...
libcdio bug fix and enhancement update
An update is available for libcdio. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky Linux 8.1...
CVE-2017-18198
A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS...
NewStart CGSL CORE 5.04 / MAIN 5.04 : libcdio Multiple Vulnerabilities (NS-SA-2019-0043)
The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has libcdio packages installed that are affected by multiple vulnerabilities: - A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applicatio...
EulerOS 2.0 SP5 : libcdio (EulerOS-SA-2019-1682)
According to the version of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 Note that Tenable Network Security has extracted...
openSUSE Security Update : libcdio (openSUSE-2019-599)
This update for libcdio fixes the following issues : The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc108287...
Amazon Linux 2 : libcdio (ALAS-2019-1151)
A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS.CVE-2017-18198 A double-free flaw was found in the wa...
Low: libcdio
Issue Overview: A heap corruption bug was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files, thus resulting in local DoS.CVE-2017-18198 A double-free flaw was...
Denial Of Service (DoS)
libcdio is vulnerable to denial of service. A heap-based buffer over-read in printiso9660recurse function in iso-info.c allows a remote attacker to crash the process using a malicious iso file...
SUSE SLED15 / SLES15 Security Update : libcdio (SUSE-SU-2018:2236-1)
This update for libcdio fixes the following issues: The following security vulnerabilities were addressed : - CVE-2017-18199: Fixed a NULL pointer dereference in reallocsymlink in rock.c bsc1082821 - CVE-2017-18201: Fixed a double free vulnerability in getcdtextgeneric in cdiogeneric.c bsc1082877...
EulerOS 2.0 SP2 : libcdio (EulerOS-SA-2018-1418)
According to the versions of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in...
EulerOS 2.0 SP3 : libcdio (EulerOS-SA-2018-1390)
According to the versions of the libcdio package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in...
Scientific Linux Security Update : libcdio on SL7.x x86_64 (20181030)
Security Fixes : - libcdio: Heap-based buffer over-read in printiso9660recurse function in iso-info.c CVE-2017-18198 - libcdio: NULL pointer dereference in reallocsymlink in rock.c CVE-2017-18199 - libcdio: Double free in getcdtextgeneric in lib/driver/cdiogeneric.c CVE-2017-18201 C Tenable Netwo...
CentOS 7 : libcdio (CESA-2018:3246)
An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...
libcdio security update
CentOS Errata and Security Advisory CESA-2018:3246 An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity ratin...
Oracle Linux 7 : libcdio (ELSA-2018-3246)
The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2018-3246 advisory. - fix CVE-2017-18198 and CVE-2017-18199 - fix CVE-2017-18201 Tenable has extracted the preceding description block directly from the Oracle Linux...
libcdio security update
0.92-3 - fix CVE-2017-18198 and CVE-2017-18199 - Resolves: rhbz1553769 - Resolves: rhbz1553604 0.92-2 - fix CVE-2017-18201 - Resolves: rhbz1553621...
RHEL 7 : libcdio (RHSA-2018:3246)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2018:3246 advisory. The libcdio library provides an interface for CD-ROM access. It can be used by applications that need OS- independent and device-independent...
libcdio: Double free in get_cdtext_generic() in lib/driver/_cdio_generic.c
A double-free flaw was found in the way libcdio handled processing of ISO files. An attacker could potentially use this flaw to crash applications using libcdio by tricking them into processing crafted ISO files...
Low: Red Hat Security Advisory: libcdio security update
An update for libcdio is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...