CVE-2019-1010232

CVE-2019-1010232 affects Juniper libslax (Slack SLAX engine). The vulnerability is a Buffer Overflow in libslax’s slaxlexer.c:601 (function slaxGetInput), enabling remote Denial of Service via the attack vector: ./slaxproc --slax-to-xslt POC0. Public documents consistently describe the affected c...

CVE-2021-39531

CVE-2021-39531 affects libslax up to v0.22.1, where slaxLexer() in slaxlexer.c has a stack-based buffer overflow. The issue is documented across multiple sources (e.g., NVD/NIST entry and Juniper Junos OS advisory citing the CVE), indicating the vulnerable component is libslax and the root cause ...

CVE-2021-39534

CVE-2021-39534 — Summary (concrete details available) Affects: libslax up to version 0.22.1 (SLAX language library). Vulnerable component: slaxIsCommentStart() in slaxlexer.c. Root cause: heap-based buffer overflow in the mentioned function. Impact (as documented): potential memory corruption wit...

CVE-2021-39533

The CVE-2021-39533 issue affects libslax up to v0.22.1, where slaxLexer() in slaxlexer.c has a heap-based buffer overflow. This is cited across multiple sources (NVD entry CVE-2021-39533 and related advisories) as the underlying vulnerability component. The connected docs corroborate the vulnerab...

CVE-2021-39532

CVE-2021-39532 affects libslax up to v0.22.1. The vulnerability is a NULL pointer dereference in the function slaxLexer() in slaxlexer.c , which can be exploited to cause a Denial of Service . The connected sources confirm the issue but do not provide a remediation, patch details, or confirmed ex...