|
Lines 1-3
Link Here
|
|
|
1 |
<vuln vid="0bf816f6-3cfe-11ec-86cd-dca632b19f10"> |
| 2 |
<topic>advancecomp -- multiple vulnerabilities</topic> |
| 3 |
<affects> |
| 4 |
<package> |
| 5 |
<name>advancecomp</name> |
| 6 |
<range><lt>2.2.*</lt></range> |
| 7 |
</package> |
| 8 |
</affects> |
| 9 |
<description> |
| 10 |
<body xmlns="http://www.w3.org/1999/xhtml"> |
| 11 |
<p>Joonun Jang reports:</p> |
| 12 |
<blockquote cite="https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=889270"> |
| 13 |
<p>heap buffer overflow running advzip with "-l poc" option</p> |
| 14 |
|
| 15 |
<p>Running 'advzip -l poc' with the attached file raises heap buffer overflow |
| 16 |
which may allow a remote attacker to cause unspecified impact including denial-of-service attack. |
| 17 |
I expected the program to terminate without segfault, but the program crashes as follow. [...] |
| 18 |
</p> |
| 19 |
</blockquote> |
| 20 |
<p>and other vulnerabilities.</p> |
| 21 |
</body> |
| 22 |
</description> |
| 23 |
<references> |
| 24 |
<cvename>CVE-2018-1056</cvename> |
| 25 |
<cvename>CVE-2019-8379</cvename> |
| 26 |
<cvename>CVE-2019-8383</cvename> |
| 27 |
<cvename>CVE-2019-9210</cvename> |
| 28 |
</references> |
| 29 |
<dates> |
| 30 |
<discovery>2018-07-29</discovery> |
| 31 |
<entry>2021-11-04</entry> |
| 32 |
</dates> |
| 33 |
</vuln> |
| 34 |
|
| 1 |
<vuln vid="33557582-3958-11ec-90ba-001b217b3468"> |
35 |
<vuln vid="33557582-3958-11ec-90ba-001b217b3468"> |
| 2 |
<topic>Gitlab -- Multiple Vulnerabilities</topic> |
36 |
<topic>Gitlab -- Multiple Vulnerabilities</topic> |
| 3 |
<affects> |
37 |
<affects> |
| 4 |
- |
|
|