Lucene search

K
veracodeVeracode Vulnerability DatabaseVERACODE:39015
HistoryJan 26, 2023 - 4:16 a.m.

Denial Of Service (DoS)

2023-01-2604:16:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
5

0.0005 Low

EPSS

Percentile

18.3%

libpkgconf.so is vulnerable to Denial Of Service (DoS). The vulnerability is due to unbounded string expansion which causes a buffer overflow in the pkgconf_tuple_parse function in tuple.c, allowing an attacker to cause an application crash by processing a malicious file.