Download
| Alert*
oval:org.secpod.oval:def:108015
A collection of tools for the manipulation and layout of graphs . oval:org.secpod.oval:def:108016 A collection of tools for the manipulation and layout of graphs . oval:org.secpod.oval:def:21823 The host is installed with Graphviz 2.34.0 and is prone to a stack-based buffer overflow vulnerability. A flaw is present in the application, which fails to properly handle vectors related to a "badly formed number" and a "long digit list". Successful exploitation allows remote attackers to have uns ... oval:org.secpod.oval:def:2101258 Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list." oval:org.secpod.oval:def:106418 A collection of tools for the manipulation and layout of graphs . oval:org.secpod.oval:def:106402 A collection of tools for the manipulation and layout of graphs . oval:org.secpod.oval:def:1300273 Updated graphviz packages fix security vulnerabilities: Multiple buffer overflow vulnerabilities in graphviz due to an error within the yyerror function which can be exploited to cause a stack-based buffer overflow via a specially crafted file and the acceptance of an arbitrarily long digit list b ... oval:org.secpod.oval:def:1600000 Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list." Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2 ... oval:org.secpod.oval:def:1600125 Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list." Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2 ... oval:org.secpod.oval:def:701545 graphviz: rich set of graph drawing tools Graphviz could be made to crash or run programs as your login if it opened a specially crafted file. oval:org.secpod.oval:def:601194 Two buffer overflow vulnerabilities were reported in Graphviz, a rich collection of graph drawing tools. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2014-0978 It was discovered that user-supplied input used in the yyerror function in lib/cgraph/scan.l is not ... |