23 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-12207
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerability has been found in Kamailio 5.5. This affects the function yyerrorat of the file src/core/cfg.y of the component Grammar Rule Handler. Such...
PT-2025-43867
Name of the Vulnerable Software and Affected Versions Kamailio version 5.5 Description A flaw exists in Kamailio 5.5 within the Grammar Rule Handler component, specifically in the yyerror at function located in the src/core/cfg.y file. This issue can lead to a null pointer dereference. Exploitati...
EUVD-2014-8982
Malware in sbrugna...
SUSE CVE-2014-0978
Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...
SUSE CVE-2014-1235
Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978...
SUSE CVE-2017-11465
The parseryyerror function in the UTF-8 parser in Ruby 2.4.1 allows attackers to cause a denial of service invalid write or read or possibly have unspecified other impact via a crafted Ruby script, related to the parsertokaddutf8 function in parse.y. NOTE: this might have security relevance as a...
DEBIAN-CVE-2014-1235
Stack-based buffer overflow in the "yyerror" function in Graphviz 2.34.0 allows remote attackers to execute arbitrary code or cause a denial of service application crash via a crafted file. NOTE: This vulnerability exists due to an incomplete fix for CVE-2014-0978...
Ruby UTF-8 Parser Denial of Service Vulnerability
Ruby is a cross-platform, object-oriented, dynamically typed programming language. A security vulnerability in the 'parseryyerror' function of Ruby's UTF-8 parser allows remote attackers to exploit the vulnerability to submit a special request for a denial of service attack...
[SECURITY] [DSA 3098-1] graphviz security update
------------------------------------------------------------------------- Debian Security Advisory DSA-3098-1 [email protected] http://www.debian.org/security/ Salvatore Bonaccorso December 11, 2014 http://www.debian.org/security/faq -...
DLA-105-1 graphviz - security update
Bulletin has no description...
DSA-3098-1 graphviz - security update
Bulletin has no description...
DEBIAN-CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
Format string
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
CVE-2014-9157
Format string vulnerability in the yyerror function in lib/cgraph/scan.l in Graphviz allows remote attackers to have unspecified impact via format string specifiers in unknown vectors, which are not properly handled in an error string...
PT-2014-8857 · At&T +1 · Graphviz +1
Name of the Vulnerable Software and Affected Versions: Graphviz affected versions not specified Description: The issue is related to a format string vulnerability in the yyerror function in lib/cgraph/scan.l of Graphviz. This vulnerability allows remote attackers to have an unspecified impact via...
Fedora 19 : graphviz-2.30.1-12.fc19 (2014-0621)
This is an update that fixes CVE-2014-1235 and CVE-2014-1236. This is an update that fixes overflow in yyerror. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it a...
CVE-2014-0978
Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file...