|
213191
|
6.5 |
MEDIUM
Network
|
graphviz
|
graphviz
|
An issue was discovered in lib\cdt\dttree.c in libcdt.a in graphviz 2.40.1. Stack consumption occurs because of recursive agclose calls in lib\cgraph\graph.c in libcgraph.a, related to agfstsubg in l…
|
CWE-674
Uncontrolled Recursion
|
CVE-2019-9904
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213192
|
6.5 |
MEDIUM
Network
|
freedesktop
fedoraproject
debian
canonical
redhat
|
poppler
fedora
debian_linux
ubuntu_linux
enterprise_linux
enterprise_linux_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
|
PDFDoc::markObject in PDFDoc.cc in Poppler 0.74.0 mishandles dict marking, leading to stack consumption in the function Dict::find() located at Dict.cc, which can (for example) be triggered by passin…
|
CWE-787
Out-of-bounds Write
|
CVE-2019-9903
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213193
|
9.8 |
CRITICAL
Network
|
putty
fedoraproject
debian
opensuse
netapp
|
putty
fedora
debian_linux
leap
oncommand_unified_manager
|
Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71.
|
CWE-330
Use of Insufficiently Random Values
|
CVE-2019-9898
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213194
|
7.5 |
HIGH
Network
|
putty
fedoraproject
debian
netapp
opensuse
|
putty
fedora
debian_linux
oncommand_unified_manager
leap
|
Multiple denial-of-service attacks that can be triggered by writing to the terminal exist in PuTTY versions before 0.71.
|
NVD-CWE-noinfo
|
CVE-2019-9897
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213195
|
7.8 |
HIGH
Local
|
putty
opensuse
|
putty
leap
backports_sle
|
In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting a malicious help file in the same directory as the executable.
|
CWE-427
Uncontrolled Search Path Element
|
CVE-2019-9896
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213196
|
9.8 |
CRITICAL
Network
|
putty
fedoraproject
|
putty
fedora
|
In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding.
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2019-9895
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213197
|
7.5 |
HIGH
Network
|
putty
fedoraproject
debian
netapp
opensuse
|
putty
fedora
debian_linux
oncommand_unified_manager
leap
|
A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification.
|
CWE-320
Key Management Errors
|
CVE-2019-9894
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213198
|
9.8 |
CRITICAL
Network
|
libseccomp_project
|
libseccomp
|
libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators (LT, GT, LE, GE), which might able to lead to bypassing seccomp filters and poten…
|
NVD-CWE-noinfo
|
CVE-2019-9893
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213199
|
2.7 |
LOW
Network
|
vanillaforums
|
vanilla
|
In Vanilla before 2.6.4, a flaw exists within the getSingleIndex function of the AddonManager class. The issue results in a require call using a crafted type value, leading to Directory Traversal wit…
|
CWE-22
Path Traversal
|
CVE-2019-9889
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
213200
|
7.8 |
HIGH
Local
|
pdfalto_project
xpdfreader
|
pdfalto
xpdf
|
There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a c…
|
CWE-125
Out-of-bounds Read
|
CVE-2019-9878
|
2024-11-21 13:52 |
2019-03-22 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
