2 matches found
CVE-2019-11639
CVE-2019-11639 affects GNU Recutils 1.8, with a stack-based buffer overflow in rec_type_check_enum (rec-types.c, librec.a). The vulnerability’s impact is described as potentially enabling partial confidentiality/integrity/availability impact, with CVSS v3 base score 8.8 (HIGH) and CVSS v2 base sc...
CVE-2019-11640
CVE-2019-11640 affects GNU Recutils 1.8 (notably 1.8.90 in some advisories). The issue is a heap-based buffer overflow in rec_fex_parse_str_simple (rec-fex.c) within librec.a. Impacted versions may crash or become unstable due to memory corruption. Several connected advisories confirm the vulnera...