Lucene search

Veracode Vulnerability DatabaseVERACODE:12219

HistoryJan 15, 2019 - 9:14 a.m.

Information Disclosure

2019-01-1509:14:18

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

JSON

libguestfs is vulnerable to informatino disclosure. An integer conversion flaw was found in the way OCaml’s String handled its length. Certain operations on an excessively long String could trigger a buffer overflow or result in an information leak.

CPENameOperatorVersion
libguestfseq1.20.11__11.el6
libguestfseq1.16.19__1.el6
libguestfseq1.20.11__2.el6
libguestfseq1.22.6__22.el7
libguestfseq1.20.11__14.el6
libguestfseq1.28.1__1.55.el7_2.2
libguestfseq1.28.1__1.55.el7
libguestfseq1.7.17__26.el6
libguestfseq1.7.17__17.el6
libguestfseq1.2.7__1.24.el6

Name	Operator	Version
libguestfs	eq	1.20.11__11.el6
libguestfs	eq	1.16.19__1.el6
libguestfs	eq	1.20.11__2.el6
libguestfs	eq	1.22.6__22.el7
libguestfs	eq	1.20.11__14.el6
libguestfs	eq	1.28.1__1.55.el7_2.2
libguestfs	eq	1.28.1__1.55.el7
libguestfs	eq	1.7.17__26.el6
libguestfs	eq	1.7.17__17.el6
libguestfs	eq	1.2.7__1.24.el6

Rows per page:

1-10 of 151

References

access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/7.3_Release_Notes/index.html

access.redhat.com/security/updates/classification/#moderate

bugzilla.redhat.com/show_bug.cgi?id=1064041

bugzilla.redhat.com/show_bug.cgi?id=1099976

bugzilla.redhat.com/show_bug.cgi?id=1156298

bugzilla.redhat.com/show_bug.cgi?id=1164708

bugzilla.redhat.com/show_bug.cgi?id=1166057

bugzilla.redhat.com/show_bug.cgi?id=1167916

bugzilla.redhat.com/show_bug.cgi?id=1173695

bugzilla.redhat.com/show_bug.cgi?id=1174551

bugzilla.redhat.com/show_bug.cgi?id=1176801

bugzilla.redhat.com/show_bug.cgi?id=1180769

bugzilla.redhat.com/show_bug.cgi?id=1190669

bugzilla.redhat.com/show_bug.cgi?id=1213324

bugzilla.redhat.com/show_bug.cgi?id=1213701

bugzilla.redhat.com/show_bug.cgi?id=1218766

bugzilla.redhat.com/show_bug.cgi?id=1225789

bugzilla.redhat.com/show_bug.cgi?id=1227599

bugzilla.redhat.com/show_bug.cgi?id=1227609

bugzilla.redhat.com/show_bug.cgi?id=1229119

bugzilla.redhat.com/show_bug.cgi?id=1229386

bugzilla.redhat.com/show_bug.cgi?id=1238053

bugzilla.redhat.com/show_bug.cgi?id=1239154

bugzilla.redhat.com/show_bug.cgi?id=1242853

bugzilla.redhat.com/show_bug.cgi?id=1260801

bugzilla.redhat.com/show_bug.cgi?id=1261242

bugzilla.redhat.com/show_bug.cgi?id=1261436

bugzilla.redhat.com/show_bug.cgi?id=1262959

bugzilla.redhat.com/show_bug.cgi?id=1264835

bugzilla.redhat.com/show_bug.cgi?id=1267032

bugzilla.redhat.com/show_bug.cgi?id=1277074

bugzilla.redhat.com/show_bug.cgi?id=1277122

bugzilla.redhat.com/show_bug.cgi?id=1287826

bugzilla.redhat.com/show_bug.cgi?id=1290755

bugzilla.redhat.com/show_bug.cgi?id=1292437

bugzilla.redhat.com/show_bug.cgi?id=1293527

bugzilla.redhat.com/show_bug.cgi?id=1296606

bugzilla.redhat.com/show_bug.cgi?id=1306557

bugzilla.redhat.com/show_bug.cgi?id=1308769

bugzilla.redhat.com/show_bug.cgi?id=1309580

bugzilla.redhat.com/show_bug.cgi?id=1309619

bugzilla.redhat.com/show_bug.cgi?id=1309706

bugzilla.redhat.com/show_bug.cgi?id=1309796

bugzilla.redhat.com/show_bug.cgi?id=1311373

bugzilla.redhat.com/show_bug.cgi?id=1312254

bugzilla.redhat.com/show_bug.cgi?id=1314244

bugzilla.redhat.com/show_bug.cgi?id=1315237

bugzilla.redhat.com/show_bug.cgi?id=1316479

bugzilla.redhat.com/show_bug.cgi?id=1318440

bugzilla.redhat.com/show_bug.cgi?id=1325825

bugzilla.redhat.com/show_bug.cgi?id=1326266

bugzilla.redhat.com/show_bug.cgi?id=1328766

bugzilla.redhat.com/show_bug.cgi?id=1332025

bugzilla.redhat.com/show_bug.cgi?id=1340407

bugzilla.redhat.com/show_bug.cgi?id=1340464

bugzilla.redhat.com/show_bug.cgi?id=1340809

bugzilla.redhat.com/show_bug.cgi?id=1341564

bugzilla.redhat.com/show_bug.cgi?id=1341608

bugzilla.redhat.com/show_bug.cgi?id=1341984

bugzilla.redhat.com/show_bug.cgi?id=1342337

bugzilla.redhat.com/show_bug.cgi?id=1342398

bugzilla.redhat.com/show_bug.cgi?id=1342447

bugzilla.redhat.com/show_bug.cgi?id=1343167

bugzilla.redhat.com/show_bug.cgi?id=1343414

bugzilla.redhat.com/show_bug.cgi?id=1343423

bugzilla.redhat.com/show_bug.cgi?id=1345809

bugzilla.redhat.com/show_bug.cgi?id=1345813

bugzilla.redhat.com/show_bug.cgi?id=1348900

bugzilla.redhat.com/show_bug.cgi?id=1349237

bugzilla.redhat.com/show_bug.cgi?id=1349342

bugzilla.redhat.com/show_bug.cgi?id=1350363

bugzilla.redhat.com/show_bug.cgi?id=1352761

bugzilla.redhat.com/show_bug.cgi?id=1354335

bugzilla.redhat.com/show_bug.cgi?id=1358142

bugzilla.redhat.com/show_bug.cgi?id=1359652

bugzilla.redhat.com/show_bug.cgi?id=1362354

bugzilla.redhat.com/show_bug.cgi?id=1362357

bugzilla.redhat.com/show_bug.cgi?id=1362668

bugzilla.redhat.com/show_bug.cgi?id=1362669

bugzilla.redhat.com/show_bug.cgi?id=1364347

bugzilla.redhat.com/show_bug.cgi?id=1364419

bugzilla.redhat.com/show_bug.cgi?id=1365005

bugzilla.redhat.com/show_bug.cgi?id=1366456

bugzilla.redhat.com/show_bug.cgi?id=1367615

bugzilla.redhat.com/show_bug.cgi?id=1370424

bugzilla.redhat.com/show_bug.cgi?id=855058

rhn.redhat.com/errata/RHSA-2016-2576.html

9.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

JSON

Related for VERACODE:12219