CVE-2019-17264
CVE-2019-17264 concerns the libyal liblnk library. Affected: liblnk prior to 20191006. The issue is a heap-based buffer over-read in liblnk_location_information_read_data caused by using an incorrect variable name for an offset. The vendor has disputed this in the related GitHub issue. Impact is ...