Lucene search
Veracode Vulnerability DatabaseVERACODE:12860HistoryJan 15, 2019 - 9:22 a.m.
Denial Of Service (DoS) Through Stack Buffer Overflow
2019-01-1509:22:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.39 Low
EPSS
Percentile
97.3%
librelp.so is vulnerable to denial of service (DoS) through stack-based buffer overflow attacks. The vulnerability exists in relpTcpChkPeerName of src/tcp.c where it was possible to overflow the call to snprintf when parsing a malicious x509 certificate, causing a denial of service (DoS), and possibly other forms of attack.
| CPE | Name | Operator | Version |
|---|---|---|---|
| librelp | eq | 0.1.1__4.1.el6 |
Related
nessus
nessus
openSUSE Security Update : librelp (openSUSE-2018-319)
2018-03-28 00:00:00
RHEL 6 : librelp (RHSA-2018:1225)
2018-04-25 00:00:00
RHEL 7 : librelp (RHSA-2018:1703)
2018-05-24 00:00:00
openvas
openvas
openSUSE: Security Advisory for librelp (openSUSE-SU-2018:0829-1)
2018-03-28 00:00:00
CentOS Update for librelp CESA-2018:1225 centos6
2018-05-03 00:00:00
Ubuntu: Security Advisory (USN-3612-1)
2018-03-29 00:00:00
oraclelinux
oraclelinux
librelp security update
2018-04-24 00:00:00
librelp security update
2018-04-24 00:00:00
centos
centos
librelp security update
2018-05-02 12:03:26
librelp security update
2018-05-30 18:24:01
redhatcve
redhatcve
CVE-2018-1000140
2019-10-11 10:34:55
mageia
mageia
Updated librelp packages fix security vulnerability
2018-05-19 23:56:45
osv
osv
librelp vulnerability
2021-03-15 22:11:40
librelp - security update
2018-03-26 00:00:00
CVE-2018-1000140
2018-03-23 21:29:00
cvelist
cvelist
CVE-2018-1000140
2018-03-23 00:00:00
redhat
redhat
(RHSA-2018:1702) Critical: librelp security update
2018-05-23 13:46:26
(RHSA-2018:1225) Critical: librelp security update
2018-04-24 17:22:49
(RHSA-2018:1223) Critical: librelp security update
2018-04-24 17:22:30
suse
suse
Security update for librelp (important)
2018-03-27 18:08:40
Security update for librelp (important)
2018-03-27 06:07:18
Security update for librelp (important)
2018-03-27 18:08:19
ubuntu
ubuntu
librelp vulnerability
2021-03-15 00:00:00
librelp vulnerability
2018-03-28 00:00:00
gentoo
gentoo
librelp: Remote code execution
2018-04-22 00:00:00
f5
f5
K25092613 : rsyslog vulnerability CVE-2018-1000140
2018-05-08 00:00:00
debian
debian
[SECURITY] [DSA 4151-1] librelp security update
2018-03-26 20:30:29
[SECURITY] [DSA 4151-1] librelp security update
2018-03-26 20:30:29
checkpoint_advisories
checkpoint_advisories
Red Hat librelp Stack Buffer Overflow (CVE-2018-1000140)
2018-12-18 00:00:00
debiancve
debiancve
CVE-2018-1000140
2018-03-23 21:29:00
nvd
nvd
CVE-2018-1000140
2018-03-23 21:29:00
cve
cve
CVE-2018-1000140
2018-03-23 21:29:00
fedora
fedora
[SECURITY] Fedora 27 Update: librelp-1.2.15-1.fc27
2018-04-06 15:03:19
[SECURITY] Fedora 26 Update: librelp-1.2.15-1.fc26
2018-04-06 14:37:50
veracode
veracode
Denial Of Service (DoS) Through Stack Buffer Overflow
2018-04-25 06:50:45
prion
prion
Buffer overflow
2018-03-23 21:29:00
amazon
amazon
Critical: librelp
2018-04-19 05:10:00
ubuntucve
ubuntucve
CVE-2018-1000140
2018-03-23 00:00:00
photon
photon