7 matches found
SUSE CVE-2014-7186
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted use of here documents, aka the "redirstack" issue...
CVE-2017-11465
Removed by vendor...
shopify-scripts: Null pointer dereference regression in parse.y
Hi, Just pulled the latest mruby code, and found that some of my fuzzing test cases now crash. Bisected it to commit 227daa881137d5251e03eea0883b9b574a1f064e. Reverting this change no longer causes a crash. The minimised file causing the crash is: f Also affects mruby-engine. Cheers, Hugh...
DEBIAN-CVE-2014-7187
Off-by-one error in the readtokenword function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via deeply nested for loops, aka the "wordlineno" issue...
DEBIAN-CVE-2014-7186
The redirection implementation in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via crafted use of here documents, aka the "redirstack" issue...
CVE-2014-7187
Off-by-one error in the readtokenword function in parse.y in GNU Bash through 4.3 bash43-026 allows remote attackers to cause a denial of service out-of-bounds array access and application crash or possibly have unspecified other impact via deeply nested for loops, aka the "wordlineno" issue...
CVE-2014-7186
Technical details about CVE-2014-7186 are not provided in the connected documents. Monitor for updates.