CVE-2014-9474

CVE-2014-9474 affects the GNU MPFR library. The vulnerability is a buffer overflow in the mpfr_strtofr function caused by incorrect documentation for mpn_set_str, reported for MPFR versions before 3.1.2-p11. Multiple connected advisories (MiracleLinux, Oracle Linux, Red Hat, TencentOS, RHEL, SUSE...

CVE-2009-0757

CVE-2009-0757 affects MPFR 2.4.0 and reports multiple buffer overflows in the MPFR library’s mpfr_snprintf and mpfr_vsnprintf functions, allowing a context-dependent attacker to cause a denial of service (crash) in applications linked against MPFR. Connected advisories (Ubuntu USN-772-1, USN-771-...