3 matches found
CVE-2021-46019
GNU Recutils 1.8.90 contains a vulnerability: an untrusted pointer dereference in rec_db_destroy() inside rec-db.c, which can cause a segmentation fault or application crash. The issue is documented in CVE-2021-46019 across multiple sources (NVD/CNVD) with explicit description of the faulty code ...
CVE-2021-46022
GNU Recutils v1.8.90 contains a Use-After-Free in rec_mset_elem_destroy() (rec-mset.c) that can cause a segmentation fault or crash. Connected sources identify this CVE as affecting Recutils and reference vendor advisories (e.g., Fedora/Ubuntu) and patches in newer packages (e.g., recutils 1.9.x)...
CVE-2021-46021
CVE-2021-46021 affects GNU Recutils, specifically an Use-After-Free in rec_record_destroy() (rec-record.c) for version v1.8.90 . The flaw can lead to a segmentation fault or application crash . The connected documents reiterate the symptom and vulnerable component but do not provide a vendor patc...