19 matches found
SUSE CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
libevt:file_fuzzer: Use-of-uninitialized-value in libevt_io_handle_end_of_file_record_scan
Detailed Report: https://oss-fuzz.com/testcase?key=5688082737922048 Project: libevt Fuzzing Engine: libFuzzer Fuzz Target: filefuzzer Job Type: libfuzzermsanlibevt Platform Id: linux Crash Type: Use-of-uninitialized-value Crash Address: Crash State: libevtiohandleendoffilerecordscan...
Debian DSA-4160-1 : libevt - security update
It was discovered that insufficient input sanitising in libevt, a library to access the Windows Event Log EVT format, could result in denial of service if a malformed EVT file is processed. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...
[SECURITY] [DSA 4160-1] libevt security update
------------------------------------------------------------------------- Debian Security Advisory DSA-4160-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff April 01, 2018 https://www.debian.org/security/faq -...
DSA-4160-1 libevt - security update
Bulletin has no description...
Debian: Security Advisory (DSA-4160-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Libevt Design Vulnerabilities
libevt is a tool for accessing the Windows event log. A security vulnerability in the 'libevtrecordvaluesreadevent' function in the libevtrecordvalues.c file in versions of libevt prior to 2018-03-17 stems from a failure of the program to properly perform a detection. A detailed vulnerability...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
Out-of-bounds
DISPUTED The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
DEBIAN-CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
UBUNTU-CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
The libevtrecordvaluesreadevent function in libevtrecordvalues.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub...
CVE-2018-8754
CVE-2018-8754 concerns the libevt library (Windows Event Log EVT format). The issue arises in the function libevt_record_values_read_event() in libevt_record_values.c, prior to 2018-03-17, where there is insufficient validation for out-of-bounds values of user SID data size, strings size, or data...
PT-2018-18614 · Libyal +1 · Libevt +1
Name of the Vulnerable Software and Affected Versions: libevt versions prior to 2018-03-17 Description: The issue concerns the libevt record values read event function in libevt record values.c, which does not properly check for out-of-bounds values of user SID data size, strings size, or data...