Vulnerability & Exploit Database

Displaying all 9 entries

Results for: CVE-2018-4189 Back to search

Gentoo Linux: CVE-2018-1000179: Quassel: Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: May 08, 2018

A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service.

Gentoo Linux: CVE-2018-1000178: Quassel: Multiple vulnerabilities Vulnerability

  • Severity: 8
  • Published: May 08, 2018

A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely.

Debian: CVE-2018-1000179: quassel -- security update Vulnerability

  • Severity: 5
  • Published: May 08, 2018

A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service.

Debian: CVE-2018-1000178: quassel -- security update Vulnerability

  • Severity: 8
  • Published: May 08, 2018

A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely.

Alpine Linux: CVE-2018-1000179: quassel Multiple vulnerabilities Vulnerability

  • Severity: 5
  • Published: May 08, 2018

A NULL Pointer Dereference of CWE-476 exists in quassel version 0.12.4 in the quasselcore void CoreAuthHandler::handle(const Login &msg) coreauthhandler.cpp line 235 that allows an attacker to cause a denial of service.

Alpine Linux: CVE-2018-1000178: quassel Multiple vulnerabilities Vulnerability

  • Severity: 8
  • Published: May 08, 2018

A heap corruption of type CWE-120 exists in quassel version 0.12.4 in quasselcore in void DataStreamPeer::processMessage(const QByteArray &msg) datastreampeer.cpp line 62 that allows an attacker to execute code remotely.

OS X update for Kernel (CVE-2018-4189) Vulnerability

  • Severity: 10
  • Published: May 03, 2018

In iOS before 11.2.5, macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, watchOS before 4.2.2, and tvOS before 11.2.5, a memory corruption issue exists and was addressed with improved memory handling.

SUSE: CVE-2016-9801: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 03, 2016

In BlueZ 5.42, a buffer overflow was observed in "set_ext_ctrl" function in "tools/parser/l2cap.c" source file when processing corrupted dump file.

SUSE: CVE-2016-9800: SUSE Linux Security Advisory Vulnerability

  • Severity: 5
  • Published: December 03, 2016

In BlueZ 5.42, a buffer overflow was observed in "pin_code_reply_dump" function in "tools/parser/hci.c" source file. The issue exists because "pin" array is overflowed by supplied parameter due to lack of boundary checks on size of the buffer from frame "pin_code_reply_cp *cp" parameter.