13 matches found
CVE-2017-1000172
Creolabs Gravity 1.0 is affected by a Heap Use-After-Free in gravity_lexer.c (line 542) where the sublexer pointer is freed but still used via lexer , enabling possible code execution. This vulnerability is documented across multiple sources (NVD, Red Hat, CNVD, CNVD-like listings). The available...
CVE-2017-1000075
Creolabs Gravity 1.0 is vulnerable to a stack/buffer overflow in the memcmp function. CNVD-2017-27179 describes a buffer overflow in memcmp for Gravity 1.0, with an attacker able to exploit this vulnerability to terminate a process (infinite loop). No remediation details are provided in the conne...
CVE-2017-1000437
Creolabs Gravity 1.0 is affected by a stack-based buffer overflow in the operator_string_add function that can lead to remote code execution. Multiple sources (NVD, CNVD/PRION/CVELIST) corroborate this vulnerability in Gravity 1.0, with the flaw located in the operator_string_add path and describ...
CVE-2017-1000072
Creolabs Gravity 1.0 is affected by a Double Free in the gravity_value function. The root cause is a double-free condition that can lead to modification of memory locations. The CVE entry confirms this for Creolabs Gravity, with an impact described as potential memory corruption. No exploitation ...
CVE-2021-32282
CVE-2021-32282 affects Gravity up to 0.8.1. A NULL pointer dereference in ircode_add_check() (gravity_ircode.c) can lead to Denial of Service. The vulnerability is documented across multiple sources in the connected set, confirming the affected component/file and the impact. No exploit or detaile...
CVE-2017-1000073
Creolabs Gravity 1.0 is affected by a heap overflow in an undisclosed component, enabling arbitrary code execution. This is documented across multiple sources (e.g., NVD/CNVD entries). No specific vulnerable function, module, or exploit details are provided in the supplied documents. The CVE is a...
CVE-2017-1000173
Creolabs Gravity 1.0 is affected by a heap-buffer-overflow vulnerability. The issue arises from constructing a large loop that pushes data into a buffer, allowing an out-of-bounds read when list.join is invoked, breaking bounds checking and triggering potential code execution. The CVE details exp...
CVE-2021-32281
The CVE-2021-32281 issue affects the Gravity language (versions up to and including 0.8.1). A heap-buffer-overflow is located in the function gnode_function_add_upvalue within gravity_ast.c, which can allow an attacker to achieve code execution. The available connected documents confirm the affec...
CVE-2021-32284
Gravity up to 0.8.1 contains a NULL pointer dereference in ircode_register_pop_context_protect() (gravity_ircode.c), allowing an attacker to cause a Denial of Service. This CVE (CVE-2021-32284) is described across multiple sources (NVD, CNVD, Red Hat, OSV, CNVD). Affected versions: Gravity 0.8.1 ...
CVE-2017-1000074
Creolabs Gravity 1.0 is affected by a stack overflow in the string_repeat() function. CNVD-2017-27180 & NVD/NVD-derived entries describe a stack buffer overflow in string_repeat() that can allow memory corruption and control of program memory. Details across connected sources confirm the affected...
CVE-2021-32285
CVE-2021-32285 affects Gravity up to version 0.8.1. A NULL pointer dereference in the function list_iterator_next() (gravity_core.c) can lead to Denial of Service. The linked sources confirm the vulnerability details and impact but do not provide specific exploit code, affected platforms, or a co...
CVE-2018-13795
CVE-2018-13795 affects Gravity prior to 0.5.1. The issue is described as: Gravity before 0.5.1 does not support a maximum recursion depth. Connected sources list Gravity-specific references with this description; no additional technical details (root cause, affected versions beyond the pre-0.5.1 ...
CVE-2021-32283
CVE-2021-32283 affects the Gravity project up to version 0.8.1. The vulnerability is a NULL pointer dereference in the function gravity_string_to_value() in gravity_value.c, which can lead to Denial of Service . Exploit status, impact scope, and remediation details are not provided in the supplie...