Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GnuLibcdio*

3 matches found

CVE
CVEadded 2018/02/26 2:0 p.m.99 views

CVE-2017-18201

CVE-2017-18201 describes a double-free in libcdio's get_cdtext_generic() in lib/driver/_cdio_generic.c, affecting libcdio up to versions prior to 2.0.0. The connected advisories (SUSE, Amazon Linux 2, CentOS/RHEL, EulerOS, etc.) indicate this issue was fixed in their respective libcdio updates (e...

9.8CVSS9.2AI score0.0045EPSS
CVE
CVEadded 2018/02/24 6:0 a.m.88 views

CVE-2017-18199

CVE-2017-18199 affects libcdio (GNU) via realloc_symlink in rock.c. A NULL pointer dereference can be triggered by processing a crafted ISO file, enabling remote denial of service. The vulnerability is present in libcdio versions before 1.0.0. Remediation: upgrade to libcdio 1.0.0 or newer (vendo...

6.5CVSS7AI score0.02406EPSS
CVE
CVEadded 2018/02/24 6:0 a.m.82 views

CVE-2017-18198

CVE-2017-18198 affects libcdio’s ISO handling: print_iso9660_recurse in iso-info.c in GNU libcdio before 1.0.0 allows remote attackers to cause a heap-based buffer over-read (and possibly other impact) by supplying a crafted ISO file. The connected advisories confirm multiple vendors package libc...

8.8CVSS9.2AI score0.02146EPSS