92 matches found
CVE-2019-9656
An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump...
UBUNTU-CVE-2019-9656
An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump...
CVE-2019-9656
CVE-2019-9656 affects LibOFX 0.9.14, with a NULL pointer dereference in OFXApplication::startElement in lib/ofx_sgml.cpp (as demonstrated by ofxdump). Connected advisories indicate patches exist for libofx to fix this vulnerability (e.g., SUSE/MGASA-2019-0409 and OSV entries). Impact details in t...
CVE-2019-9656
An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump...
CVE-2019-9656
An issue was discovered in LibOFX 0.9.14. There is a NULL pointer dereference in the function OFXApplication::startElement in the file lib/ofxsgml.cpp, as demonstrated by ofxdump...
LibOFX Null Pointer Backreference Vulnerability
LibOFX is a library that allows programs to support OFX financial data bi-directional exchange command responses. A null pointer back-reference vulnerability exists in the 'OFXApplication::startElement' function in the lib/ofxsgml.cpp file in LibOFX version 0.9.14. No detailed vulnerability detai...
Fedora 28 : libofx (2018-8a208fba70)
This update fixes assorted CVEs in LibOFX. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
openSUSE: Security Advisory for libofx (openSUSE-SU-2018:2229-1)
The remote host is missing an update for the Copyright C 2018 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
openSUSE Security Update : libofx (openSUSE-2018-820)
This update for libofx fixes the following issues : The following security vulnerabilities have been addressed : - CVE-2017-2920: Fixed an exploitable buffer overflow in the tag parsing functionality, which could result in an out of bounds write and could be triggered via a specially crafted OFX...
Security update for libofx (important)
This update for libofx fixes the following issues: The following security vulnerabilities have been addressed: - CVE-2017-2920: Fixed an exploitable buffer overflow in the tag parsing functionality, which could result in an out of bounds write and could be triggered via a specially crafted OFX fi...
SUSE SLED12 Security Update : libofx (SUSE-SU-2018:2064-1)
This update for libofx fixes the following issues: Security issues fixed : - CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality bsc1058673. - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitizeproprietarytags in lib/ofxpreproc.cpp bsc106196...
SUSE-SU-2018:2064-1 Security update for libofx
This update for libofx fixes the following issues: Security issues fixed: - CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality bsc1058673. - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitizeproprietarytags in lib/ofxpreproc.cpp bsc1061964...
SUSE-SU-2018:2045-1 Security update for libofx
This update for libofx fixes the following issues: Security issues fixed: - CVE-2017-2816: Fix an exploitable buffer overflow vulnerability in the tag parsing functionality bsc1058673. - CVE-2017-2920: Fix a buffer overflow vulnerability in sanitizeproprietarytags in lib/ofxpreproc.cpp bsc1061964...
[ASA-201805-19] libofx: denial of service
Arch Linux Security Advisory ASA-201805-19 ========================================== Severity: Medium Date : 2018-05-20 CVE-ID : CVE-2017-14731 Package : libofx Type : denial of service Remote : Yes Link : https://security.archlinux.org/AVG-536 Summary ======= The package libofx before version...
Updated libofx packages fix security vulnerabilities
An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...
MGASA-2018-0214 Updated libofx packages fix security vulnerabilities
An exploitable buffer overflow vulnerability exists in the tag parsing functionality of LibOFX 0.9.11. A specially crafted OFX file can cause a write out of bounds resulting in a buffer overflow on the stack. An attacker can construct a malicious OFX file to trigger this vulnerability...
Fedora Update for libofx FEDORA-2018-1b3a73b45f
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora Update for libofx FEDORA-2018-4a2b875d6b
The remote host is missing an update for the SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora 26 : libofx (2018-4a2b875d6b)
This updates LibOFX to fix assorted CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...
Fedora 27 : libofx (2018-1b3a73b45f)
This updates LibOFX to fix assorted CVEs. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues...