17 matches found
Astra Linux - уязвимость в pkgconf
In pkgconf up to 1.9.3, variable duplication can lead to unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleParse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
EUVD-2023-28120
Malicious code in bioql PyPI...
EulerOS Virtualization 2.11.0 : pkgconf (EulerOS-SA-2023-2110)
According to the versions of the pkgconf package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in...
EulerOS Virtualization 2.9.0 : pkgconf (EulerOS-SA-2023-2023)
According to the versions of the pkgconf package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in...
Huawei EulerOS: Security Advisory for pkgconf (EulerOS-SA-2023-1787)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for pkgconf (EulerOS-SA-2023-1559)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MGASA-2023-0077 Updated pkgconf packages fix security vulnerability
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes. CVE-2023-24056...
In pkgconf through 1.9.3 variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconf_tuple_parse. For example a .pc file containing a few hundred bytes can expand to one billion bytes.
...
CVE-2023-24056
A flaw was found in pkgconf, where a variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. This issue may lead to a buffer overflow, which can crash the software...
ALPINE-CVE-2023-24056
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
CVE-2023-24056
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
Design/Logic Flaw
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
CVE-2023-24056
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
CVE-2023-24056
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
CVE-2023-24056
CVE-2023-24056 affects pkgconf up to 1.9.3. The issue is a root cause in libpkgconf/tuple.c:pkgconf_tuple_parse where variable duplication can cause unbounded string expansion (e.g., a small .pc expanded to billions of bytes), leading to memory/resource exhaustion. IBM bulletins for Cloud Pak pro...
CVE-2023-24056
In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect checks in libpkgconf/tuple.c:pkgconftupleparse. For example, a .pc file containing a few hundred bytes can expand to one billion bytes...
PT-2023-2539 · Pkgconf +2 · Pkgconf +2
Name of the Vulnerable Software and Affected Versions: pkgconf versions 1.9.3 and earlier Description: The issue is related to the pkgconf tuple parse function in libpkgconf/tuple.c, which can cause an unbounded string expansion due to incorrect checks. This can lead to a denial of service when a...