AZL-10412 CVE-2017-1000231 affecting package ldns for versions less than 1.7.0-32

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

CVE-2017-1000231

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

CVE-2017-1000231

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

CVE-2017-1000231

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

CVE-2017-1000231

CVE-2017-1000231 affects the ldns DNS library, specifically the parse.c path in version 1.7.0. The initial document describes a double-free vulnerability with unspecified impact, while connected advisories note related issues and patch context: openSUSE SUSE/OpenSUSE-2020-438 reports a fix for a ...

CVE-2017-1000231

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

ldns double release vulnerability

ldns is an open source library that provides DNS resolution , you can implement a variety of DNS server or client functions . A double release vulnerability exists in parse.c in ldns 1.7.0. An attacker can exploit this vulnerability to cause a denial of service...

UBUNTU-CVE-2017-1000231

A double-free vulnerability in parse.c in ldns 1.7.0 have unspecified impact and attack vectors...

CVE-2015-8863

Off-by-one error in the tokenadd function in jvparse.c in jq allows remote attackers to cause a denial of service crash via a long JSON-encoded number, which triggers a heap-based buffer overflow...

Heap overflow

The 1 otrlbase64otrdecode function in src/b64.c; 2 otrlprotodatareadflags and 3 otrlprotoacceptdata functions in src/proto.c; and 4 decode function in toolkit/parse.c in libotr before 3.2.1 allocates a zero-length buffer when decoding a base64 string, which allows remote attackers to cause a deni...

Mandriva Linux Security Advisory : sudo (MDVSA-2011:018)

Multiple vulnerabilities has been found and corrected in sudo : A a patch for parse.c in sudo does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers...

Authorization

A certain Fedora patch for parse.c in sudo before 1.7.4p5-1.fc14 on Fedora 14 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain roo...

CVE-2011-0008

CVE-2011-0008 relates to a bug in parse.c of sudo before 1.7.4p5-1.fc14 (Fedora 14) where a system group (the %group) in sudoers could be misinterpreted during authorization for a user who belongs to that group. This regression (tied to CVE-2009-0034) allows a local user to leverage an applicable...

CVE-2009-0034

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command...

CVE-2009-0034

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command...

Authorization

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command...

CVE-2009-0034

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command...

CVE-2009-0034

parse.c in sudo 1.6.9p17 through 1.6.9p19 does not properly interpret a system group aka %group in the sudoers file during authorization decisions for a user who belongs to that group, which allows local users to leverage an applicable sudoers file and gain root privileges via a sudo command...

CVE-2009-0034

CVE-2009-0034 affects sudo 1.6.9p17–1.6.9p19; parse.c does not properly interpret a system group (%group) in the sudoers file during authorization for a user in that group, enabling local users to gain root privileges via sudo. This is a local privilege escalation vulnerability. The connected Nes...

Buffer overflow

Buffer overflow in the parse function in parse.c in zoo 2.10 might allow local users to execute arbitrary code via long filename command line arguments, which are not properly handled during archive creation. NOTE: since this issue is local and not setuid, the set of attack scenarios is limited,...