|
From: | Luigi Baldoni |
Subject: | [bug-recutils] [bug #55554] CVE-2019-6458 |
Date: | Wed, 23 Jan 2019 10:21:11 -0500 (EST) |
User-agent: | Mozilla/5.0 (X11; Linux x86_64; rv:60.0) Gecko/20100101 Firefox/60.0 |
URL: <https://savannah.gnu.org/bugs/?55554> Summary: CVE-2019-6458 Project: GNU recutils Submitted by: aloysius Submitted on: Wed 23 Jan 2019 04:21:09 PM CET Category: librec Severity: 3 - Normal Item Group: None Status: None Privacy: Public Assigned to: None Open/Closed: Open Discussion Lock: Any _______________________________________________________ Details: There is a memory leak in rec_buf_new in rec-buf.c when called from rec_parse_rset in rec-parser.c in librec.a. References: http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2019-6458 http://www.cvedetails.com/cve/CVE-2019-6458/ PoC: https://github.com/TeamSeri0us/pocs/tree/master/recutils _______________________________________________________ Reply to this item at: <https://savannah.gnu.org/bugs/?55554> _______________________________________________ Message sent via Savannah https://savannah.gnu.org/
[Prev in Thread] | Current Thread | [Next in Thread] |