Skip to content
GitLab
Explore
Sign in
Register
Commits on Source (2)
Add additional references for CVE-2018-19760/confuse
· f74dc8e2
Salvatore Bonaccorso
authored
Dec 16, 2018
f74dc8e2
Mark CVE-2018-19760/confuse as unimportant
· 64d079db
Salvatore Bonaccorso
authored
Dec 16, 2018
64d079db
Show whitespace changes
Inline
Side-by-side
data/CVE/list
View file @
64d079db
...
...
@@ -4675,10 +4675,12 @@ CVE-2018-19762 (There is a heap-based buffer overflow at fromsixel.c (function:
CVE-2018-19761 (There is an illegal address access at fromsixel.c (function: ...)
TODO: check
CVE-2018-19760 (cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. ...)
- confuse <unfixed> (low)
[stretch] - confuse <no-dsa> (Minor issue)
[jessie] - confuse <no-dsa> (Minor issue)
- confuse <unfixed> (unimportant)
NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1649152
NOTE: https://github.com/martinh/libconfuse/issues/120
NOTE: https://github.com/martinh/libconfuse/commit/5f0e9ea4213d4047649c462e4f1b59a082af58e2
NOTE: Issue caused by premature exit without cleanup on an error in the caller
NOTE: not in the library; Negligible security impact in itself and disputed.
CVE-2018-19759 (There is a heap-based buffer over-read at stb_image_write.h (function: ...)
TODO: check
CVE-2018-19758 (There is a heap-based buffer over-read at wav.c in wav_write_header in ...)
Salvatore Bonaccorso authored
Salvatore Bonaccorso authored