7 matches found
CVE-2026-0708
A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...
CVE-2026-0708 Libucl: libucl: denial of service via embedded null byte in ucl input
A flaw was found in libucl. A remote attacker could exploit this by providing a specially crafted Universal Configuration Language UCL input that contains a key with an embedded null byte. This can cause a segmentation fault SEGV fault in the uclobjectemit function when parsing and emitting the...
CVE-2026-0708
CVE-2026-0708 (Libucl) describes a denial-of-service in libucl caused by a crafted UCL input containing a key with an embedded null byte. This can trigger a segmentation fault in ucl_object_emit during parsing/emitting, leading to DoS on affected systems. The CVSS base score is 8.3 ( HIGH ) with ...
libucl 安全漏洞
Libucl is a C-language general configuration library parser developed by Vsevolod Stakhov. Libucl has a security vulnerability. This vulnerability arises from the uclobjectemit function during parsing and emitting UCL inputs containing embedded null-byte keys, which may lead to a denial-of-servic...
OSV-2023-604 Segv on unknown address in ucl_object_free_internal
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=60789 Crash type: Segv on unknown address Crash state: uclobjectfreeinternal uclparserfree ucladdstringfuzzer.c...
OSV-2023-260 Heap-buffer-overflow in ucl_object_dtor_unref_single
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=57569 Crash type: Heap-buffer-overflow READ 8 Crash state: uclobjectdtorunrefsingle uclobjectdtorunref uclhashdestroy...
OSV-2022-1247 Heap-buffer-overflow in ucl_object_dtor_unref_single
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=54060 Crash type: Heap-buffer-overflow READ 8 Crash state: uclobjectdtorunrefsingle uclobjectdtorunref uclhashdestroy...