Lucene search

K

Veracode Vulnerability DatabaseVERACODE:12008

HistoryJan 15, 2019 - 9:11 a.m.

Denial Of Service (DoS)

2019-01-1509:11:00

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

8

EPSS

0.065

Percentile

93.8%

foomatic is vulnerable to denial of service (DoS) attacks. The vulnerability exists as a heap-based buffer overflow in the unhtmlify function in foomatic-rip in foomatic-filters before 4.0.6 allows remote attackers to cause a denial of service (memory corruption and crash) or possibly execute arbitrary code via a long job title.

References

bzr.linuxfoundation.org/loggerhead/openprinting/foomatic-4.0/foomatic-filters/annotate/head:/ChangeLog

rhn.redhat.com/errata/RHSA-2016-0491.html

www.openwall.com/lists/oss-security/2016/02/15/1

www.openwall.com/lists/oss-security/2016/02/15/7

www.oracle.com/technetwork/topics/security/linuxbulletinapr2016-2952096.html

access.redhat.com/security/updates/classification/#moderate

bugs.linuxfoundation.org/show_bug.cgi?id=515

bugzilla.redhat.com/show_bug.cgi?id=1218297

rhn.redhat.com/errata/RHSA-2016-0491.html

EPSS

0.065

Percentile

93.8%

Related for VERACODE:12008

f52 nvd1 cve1 ubuntucve1 cvelist1 debiancve1 prion1 openvas4 amazon1 nessus5 veracode2 oraclelinux1 centos1 redhat1