vulnerability

Amazon Linux AMI 2: CVE-2019-25051: Security patch for aspell (ALAS-2023-2199)

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
5	(AV:L/AC:L/Au:N/C:P/I:P/A:P)	2021-07-20	2023-08-09	2024-11-27

Severity

CVSS

(AV:L/AC:L/Au:N/C:P/I:P/A:P)

Published

2021-07-20

Added

2023-08-09

Modified

2024-11-27

Description

objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list).

Solution(s)

amazon-linux-ami-2-upgrade-aspellamazon-linux-ami-2-upgrade-aspell-debuginfoamazon-linux-ami-2-upgrade-aspell-devel

References

AMAZON-AL2/ALAS-2023-2199
CVE-2019-25051
https://attackerkb.com/topics/CVE-2019-25051

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today