ledger is vulnerable to arbitrary code execution. The vulnerability exists through an exploitable buffer overflow vulnerability exists in the tag parsing functionality through a malicious journal file.
CPE | Name | Operator | Version |
---|---|---|---|
ledger:eoan | eq | 3.1.2+dfsg1 | |
ledger:eoan | eq | 3.1.2+dfsg1 |