Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
GnuRecutils

14 matches found

CVE
CVEadded 2022/01/14 12:0 a.m.99 views

CVE-2021-46019

GNU Recutils 1.8.90 contains a vulnerability: an untrusted pointer dereference in rec_db_destroy() inside rec-db.c, which can cause a segmentation fault or application crash. The issue is documented in CVE-2021-46019 across multiple sources (NVD/CNVD) with explicit description of the faulty code ...

5.5CVSS5.2AI score0.01004EPSS
CVE
CVEadded 2022/01/14 12:0 a.m.96 views

CVE-2021-46022

GNU Recutils v1.8.90 contains a Use-After-Free in rec_mset_elem_destroy() (rec-mset.c) that can cause a segmentation fault or crash. Connected sources identify this CVE as affecting Recutils and reference vendor advisories (e.g., Fedora/Ubuntu) and patches in newer packages (e.g., recutils 1.9.x)...

5.5CVSS5.1AI score0.0097EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.69 views

CVE-2019-6457

CVE-2019-6457 affects GNU Recutils 1.8. The vulnerability is a memory leak in the function rec_aggregate_reg_new (in rec-aggregate.c) within the librec.a library. Public documentation consistently describes this as a memory-management issue in the Recutils codebase, without detailing any specific...

6.5CVSS6.2AI score0.01298EPSS
CVE
CVEadded 2022/01/14 8:2 p.m.69 views

CVE-2021-46021

CVE-2021-46021 affects GNU Recutils, specifically an Use-After-Free in rec_record_destroy() (rec-record.c) for version v1.8.90 . The flaw can lead to a segmentation fault or application crash . The connected documents reiterate the symptom and vulnerable component but do not provide a vendor patc...

5.5CVSS5.2AI score0.00953EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.62 views

CVE-2019-6460

CVE-2019-6460 affects GNU Recutils 1.8. It is a NULL pointer dereference in rec_field_set_name() within librec.a (rec-field.c). The initial CVE record documents this as the underlying issue; exploitation details are not provided in the connected documents. CVSS data from the entry shows two vecto...

6.5CVSS6.3AI score0.01309EPSS
CVE
CVEadded 2019/05/01 5:3 p.m.59 views

CVE-2019-11637

GNU recutils 1.8 contains a NULL pointer dereference in rec_rset_get_props (rec-rset.c in librec.a), leading to crashes. This CVE-2019-11637 issue is described consistently across multiple feeds (NVD, OSV, CNVD, CNVD-China, and related Nessus/OpenVAS entries). Connected documents confirm the affe...

6.5CVSS6.3AI score0.01411EPSS
CVE
CVEadded 2019/05/01 5:4 p.m.58 views

CVE-2019-11639

CVE-2019-11639 affects GNU Recutils 1.8, with a stack-based buffer overflow in rec_type_check_enum (rec-types.c, librec.a). The vulnerability’s impact is described as potentially enabling partial confidentiality/integrity/availability impact, with CVSS v3 base score 8.8 (HIGH) and CVSS v2 base sc...

8.8CVSS8.8AI score0.0189EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.57 views

CVE-2019-6456

GNU Recutils 1.8 contains a NULL pointer dereference in rec_fex_size() (rec-fex.c, librec.a). This CVE-2019-6456 is reflected across multiple advisories (OSV, CNVD, UBUNTU NASL/Nessus plugins) with consistent wording: a NULL pointer dereference in rec_fex_size(); no public exploit details in the ...

6.5CVSS6.3AI score0.01348EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.56 views

CVE-2019-6458

CVE-2019-6458 affects GNU Recutils 1.8. The vulnerability is a memory leak in rec_buf_new within rec-buf.c when invoked by rec_parse_rset in rec-parser.c from librec.a. The connected sources confirm the issue but do not provide exploit details or confirmed impact beyond memory-leak behavior in th...

6.5CVSS6.2AI score0.01292EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.53 views

CVE-2019-6455

GNU Recutils 1.8 contains a double-free vulnerability in rec_mset_elem_destroy() within rec-mset.c (CVE-2019-6455). The OSV/ CNVD entries confirm the same issue; no exploit details or affected version ranges beyond 1.8 are provided in the connected documents. No patch/version remediation is speci...

6.5CVSS6.3AI score0.01298EPSS
CVE
CVEadded 2019/05/01 5:4 p.m.51 views

CVE-2019-11640

CVE-2019-11640 affects GNU Recutils 1.8 (notably 1.8.90 in some advisories). The issue is a heap-based buffer overflow in rec_fex_parse_str_simple (rec-fex.c) within librec.a. Impacted versions may crash or become unstable due to memory corruption. Several connected advisories confirm the vulnera...

8.8CVSS8.8AI score0.0189EPSS
CVE
CVEadded 2019/05/01 5:3 p.m.50 views

CVE-2019-11638

GNU recutils 1.8 contains a NULL pointer dereference in rec_field_name_equal_p (rec-field-name.c in librec.a) that leads to a crash. Multiple sources (NVD, OSV, CNVD, Ubuntu USN-7137-1, and related advisories) reference CVE-2019-11638 and link it to a crash/denial behavior, but none of the provid...

6.5CVSS6.3AI score0.01411EPSS
CVE
CVEadded 2019/01/16 6:0 p.m.50 views

CVE-2019-6459

Summary: CVE-2019-6459 affects GNU Recutils 1.8. The connected documents repeatedly reference a memory leak in rec_extract_type within rec-utils.c of librec.a. The entries (OSV, CNVD, CNVD-derivatives, Ubuntu/Nessus plugins, Debian/UBUNTU OSV) confirm the issue but do not provide patch details or...

6.5CVSS6.2AI score0.01298EPSS
CVE
CVEadded 2025/12/30 12:0 a.m.21 views

CVE-2025-65409

GNU Recutils v1.9 contains a divide-by-zero in its encryption/decryption routines that can be triggered by supplying an empty password, resulting in denial of service. Publicly listed advisories indicate the affected component is gnu-recutils (version 1.9); OpenSUSE reports a GA fix in gnu-recuti...

7.5CVSS6.4AI score0.00317EPSS