8 matches found
CVE-2019-1010190
CVE-2019-1010190 affects mgetty prior to 1.2.1. The vulnerability is an out-of-bounds read in putwhitespan() (g3/pbm2g3.c) that can cause DoS and a potential crash if memory is not mapped. The attack is local and requires the victim to open a specially crafted file. The fixed version is 1.2.1. Th...
CVE-2019-1010189
CVE-2019-1010189 affects mgetty prior to 1.2.1. The flaw causes an infinite loop leading to DoS (program may not terminate) in g3/g32pbm.c. Attack vector is Local via opening a specially crafted file. Fixed in version 1.2.1. Public references include Mageia MGASA-2020-0076 and Fedora’s 2019-732b5...
CVE-2018-16741
The CVE-2018-16741 issue affects mgetty prior to 1.2.1, where do_activate() in fax/faxq-helper.c does not properly sanitize shell metacharacters, enabling local command injection via characters like ||, &&, or > in files created by faxq-helper activate . Reports from multiple Nessus/EulerOS ad...
CVE-2018-16745
CVE-2018-16745 concerns mgetty before 1.2.1. In fax_notify_mail()’s faxrec.c, the mail_to parameter is not sanitized, which could allow a buffer overflow if long untrusted input reaches it. This is the root cause and potential impact described in the public CVE entry. The connected documents conf...
CVE-2018-16742
CVE-2018-16742 affects mgetty prior to 1.2.1. In contrib/scrts.c, a stack-based buffer overflow can be triggered by a command-line parameter, enabling potential memory corruption. Affected versions are older than 1.2.1; mitigation is to upgrade to 1.2.1 or later (as reflected in vendor advisories...
CVE-2018-16744
Summary: CVE-2018-16744 affects mgetty before 1.2.1. In fax_notify_mail() (faxrec.c), the mail_to parameter is not sanitized, and because popen is used, untrusted input could trigger a command injection. The issue is documented across multiple advisories (e.g., Red Hat open/unpatched statuses) an...
CVE-2018-16743
CVE-2018-16743 affects mgetty prior to 1.2.1. In contrib/next-login/login.c, the username command-line parameter is passed unsanitized to strcpy(), causing a stack-based buffer overflow. This is a local vulnerability with potential partial confidentiality/integrity/availability impact. Mitigation...
CVE-2003-0517
The vulnerability CVE-2003-0517 affects mgetty 1.1.28 and earlier, via the faxrunqd.in component. A symlink attack on JOB files allows local users to overwrite files, compromising file integrity. The issue stems from insufficient protections around JOB file handling, enabling local privilege-impa...