7 matches found
Code injection
GnuCOBOL 2.2 has a use-after-free in the endscopeofprogramname function in cobc/parser.y via crafted COBOL source code...
CVE-2019-16396
GnuCOBOL 2.2 has a use-after-free in the endscopeofprogramname function in cobc/parser.y via crafted COBOL source code...
CVE-2018-15864
Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...
CVE-2018-15864
Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...
Null pointer dereference
Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...
CVE-2018-15864
Unchecked NULL pointer usage in resolvekeysym in xkbcomp/parser.y in xkbcommon before 0.8.2 could be used by local attackers to crash NULL pointer dereference the xkbcommon parser by supplying a crafted keymap file, because a map access attempt can occur for a map that was never created...
Scientific Linux Security Update : graphviz on SL5.x i386/x86_64
Stack-based buffer overflow in the pushsubg function in parser.y lib/graph/parser.c in Graphviz 2.20.2, and possibly earlier versions, allows user-assisted remote attackers to cause a denial of service memory corruption or execute arbitrary code via a DOT file with a large number of Agrapht...