215 matches found
libcroco: Stack overflow in function cr_parser_parse_any_core in cr-parser.c
A stack overflow flaw was found in libcroco. A service using libcroco's CSS parser could be crashed by a local, authenticated attacker, or an attacker utilizing social engineering, using a crafted input. The highest threat from this vulnerability is to system availability...
Moderate: Red Hat Security Advisory: libcroco security update
An update for libcroco is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...
RLSA-2020:3654 Moderate: libcroco security update
The libcroco is a standalone Cascading Style Sheet level 2 CSS2 parsing and manipulation library. Security Fixes: libcroco: Stack overflow in function crparserparseanycore in cr-parser.c CVE-2020-12825 For more details about the security issues, including the impact, a CVSS score, acknowledgments...
ALSA-2020:3654 Moderate: libcroco security update
The libcroco is a standalone Cascading Style Sheet level 2 CSS2 parsing and manipulation library. Security Fixes: libcroco: Stack overflow in function crparserparseanycore in cr-parser.c CVE-2020-12825 For more details about the security issues, including the impact, a CVSS score, acknowledgments...
libcroco security update
An update is available for libcroco. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The libcroco is a standalone Cascading Style Sheet level 2 CSS2 parsing and...
Moderate: libcroco security update
The libcroco is a standalone Cascading Style Sheet level 2 CSS2 parsing and manipulation library. Security Fixes: libcroco: Stack overflow in function crparserparseanycore in cr-parser.c CVE-2020-12825 For more details about the security issues, including the impact, a CVSS score, acknowledgments...
EulerOS Virtualization for ARM 64 3.0.2.0 : libcroco (EulerOS-SA-2020-1986)
According to the version of the libcroco package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - A stack overflow flaw was found in libcroco. A service using libcroco's CSS parser could be crashed by a local,...
Huawei EulerOS: Security Advisory for libcroco (EulerOS-SA-2020-1986)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for libcroco (EulerOS-SA-2020-1922)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP5 : libcroco (EulerOS-SA-2020-1922)
According to the version of the libcroco package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption.CVE-2020-12825 Note that...
Huawei EulerOS: Security Advisory for libcroco (EulerOS-SA-2020-1909)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS Virtualization for ARM 64 3.0.6.0 : libcroco (EulerOS-SA-2020-1909)
According to the version of the libcroco package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerability : - libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack...
Huawei EulerOS: Security Advisory for libcroco (EulerOS-SA-2020-1808)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP8 : libcroco (EulerOS-SA-2020-1808)
According to the version of the libcroco package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - libcroco through 0.6.13 has excessive recursion in crparserparseanycore in cr-parser.c, leading to stack consumption.CVE-2020-12825 Note that...
SUSE SLED15 / SLES15 Security Update : libcroco (SUSE-SU-2020:1535-1)
This update for libcroco fixes the following issues : Security issues fixed : CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899. Note that...
openSUSE: Security Advisory for libcroco (openSUSE-SU-2020:0780-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : libcroco (openSUSE-2020-780)
This update for libcroco fixes the following issues : Security issues fixed : - CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. - CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899. This upda...
Security update for libcroco (low)
openSUSE Security Update: Security update for libcroco Announcement ID: openSUSE-SU-2020:0780-1 Rating: low References: 1043898 1043899 Cross-References: CVE-2017-8834 CVE-2017-8871 Affected Products: openSUSE Leap 15.1 An update that fixes two vulnerabilities is now available. Description: This...
OPENSUSE-SU-2020:0780-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. - CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899. This update...
SUSE-SU-2020:1535-1 Security update for libcroco
This update for libcroco fixes the following issues: Security issues fixed: - CVE-2017-8834: Fixed denial of service memory allocation error via a crafted CSS file bsc1043898. - CVE-2017-8871: Fixed denial of service infinite loop and CPU consumption via a crafted CSS file bsc1043899...