Lucene search
Veracode Vulnerability DatabaseVERACODE:6163HistoryApr 20, 2018 - 7:44 a.m.
Denial Of Service (DoS) Through Null Pointer Dereference
2018-04-2007:44:31
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
9
0.004 Low
EPSS
Percentile
74.2%
libgraphite2.so is vulnerable to denial of service (DoS) through null pointer dereference attacks. The vulnerability exists in src/GlyphCache.cpp where the gr_face_dumbRendering flag, when -cache is enabled, leads to a null pointer dereference issue that causes the DoS.
| CPE | Name | Operator | Version |
|---|---|---|---|
| libgraphite2.so | eq | 3.0.1 |
References
bugzilla.redhat.com/show_bug.cgi?id=1554383
github.com/silnrsi/graphite/commit/db132b4731a9b4c9534144ba3a18e65b390e9ff6
github.com/silnrsi/graphite/issues/22
lists.fedoraproject.org/archives/list/[email protected]/message/L5F3CK2IPXFCLQZEBEEXONWIABN2E7H2/
lists.fedoraproject.org/archives/list/[email protected]/message/LVWOKYZZDEMG6VSG53KAGUOHUIIQ7CND/
Related
nessus
nessus
Fedora 30 : graphite2 (2019-644ef7ebec)
2019-09-09 00:00:00
SUSE SLED12 / SLES12 Security Update : graphite2 (SUSE-SU-2018:0858-1)
2018-04-04 00:00:00
EulerOS 2.0 SP3 : graphite2 (EulerOS-SA-2018-1172)
2018-06-28 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for graphite2 (EulerOS-SA-2018-1172)
2020-01-23 00:00:00
Mageia: Security Advisory (MGASA-2018-0240)
2022-01-28 00:00:00
Fedora Update for graphite2 FEDORA-2019-d0b1feb995
2019-09-10 00:00:00
ubuntucve
ubuntucve
CVE-2018-7999
2018-03-09 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: graphite2-1.3.13-1.fc29
2019-09-09 08:06:58
[SECURITY] Fedora 30 Update: graphite2-1.3.13-1.fc30
2019-09-06 12:34:53
mageia
mageia
Updated graphite2 packages fix security vulnerability
2018-05-16 11:24:56
nvd
nvd
CVE-2018-7999
2018-03-09 19:29:01
prion
prion
Null pointer dereference
2018-03-09 19:29:00
cvelist
cvelist
CVE-2018-7999
2018-03-09 19:00:00
ubuntu
ubuntu
Graphite2 vulnerability
2022-10-05 00:00:00
cve
cve
CVE-2018-7999
2018-03-09 19:29:01
redhatcve
redhatcve
CVE-2018-7999
2020-04-01 08:13:22
osv
osv
CVE-2018-7999
2018-03-09 19:29:01
graphite2 vulnerability
2022-10-05 20:55:30
debiancve
debiancve
CVE-2018-7999
2018-03-09 19:29:01