11 matches found
EUVD-2021-29491
Malicious code in bioql PyPI...
Information Disclosure
libanjuta.so is vulnerable to information disclosure.The vulnerability exits in readbookmarks function in anjuta-bookmarks.c because the incorrect use of libxml2 API which allows an attacker to gain access to information in the file system...
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'gfree' to release the return value of 'xmlGetProp'...
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'gfree' to release the return value of 'xmlGetProp'...
Null pointer dereference
There is a NULL pointer dereference vulnerability in VTK before 9.2.5, and it lies in IO/Infovis/vtkXMLTreeReader.cxx. The vendor didn't check the return value of libxml2 API 'xmlDocGetRootElement', and try to dereference it. It is unsafe as the return value can be NULL and that NULL pointer...
Information disclosure
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'gfree' to release the return value of 'xmlGetProp'...
CVE-2021-42522
CVE-2021-42522 is an Information Disclosure vulnerability in the Anjuta project, caused by incorrect handling of libxml2 API: the code in anjuta/plugins/document-manager/anjuta-bookmarks.c does not call g_free() on the result of xmlGetProp(), leading to potential leakage of memory or data. The pu...
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'gfree' to release the return value of 'xmlGetProp'...
CVE-2021-42522
There is a Information Disclosure vulnerability in anjuta/plugins/document-manager/anjuta-bookmarks.c. This issue was caused by the incorrect use of libxml2 API. The vendor forgot to call 'gfree' to release the return value of 'xmlGetProp'...
CVE-2021-42521
There is a NULL pointer dereference vulnerability in VTK before 9.2.5, and it lies in IO/Infovis/vtkXMLTreeReader.cxx. The vendor didn't check the return value of libxml2 API 'xmlDocGetRootElement', and try to dereference it. It is unsafe as the return value can be NULL and that NULL pointer...
GNOME Anjuta DevStudio 信息泄露漏洞
GNOME Anjuta DevStudio is a versatile integrated development environment IDE based on the GNOME desktop environment and features many advanced programming tools. A security vulnerability exists in GNOME Anjuta DevStudio that stems from its anjuta/plugins/document-manager/anjuta-bookmarks.c...