SUSE CVE-2017-8929

The sizedstringcmp function in libyara/sizedstr.c in YARA 3.5.0 allows remote attackers to cause a denial of service use-after-free and application crash via a crafted rule...

YARA 'specialized_string_cmp' Denial of Service Vulnerability

YARA is a set of tools used to help software researchers identify and categorize malware samples. A denial-of-service vulnerability exists in the 'sizedstringcmp' parameter of the YARA libyara/sizedstr.c file, which can be exploited by a remote attacker to submit a special request and cause a...