vulnerability

Amazon Linux AMI 2: CVE-2019-25051: Security patch for aspell (ALAS-2023-2199)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	Jul 20, 2021	Aug 9, 2023	Nov 27, 2024

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

Jul 20, 2021

Added

Aug 9, 2023

Modified

Nov 27, 2024

Description

objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list).

Solution(s)

amazon-linux-ami-2-upgrade-aspellamazon-linux-ami-2-upgrade-aspell-debuginfoamazon-linux-ami-2-upgrade-aspell-devel

References

AMAZON-AL2/ALAS-2023-2199
CVE-2019-25051
https://attackerkb.com/topics/CVE-2019-25051

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today