Unrated severityNVD Advisory· Published Nov 12, 2018· Updated Aug 5, 2024
CVE-2018-19199
CVE-2018-19199
Description
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4- osv-coords3 versionspkg:rpm/opensuse/uriparser&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/uriparser&distro=openSUSE%20Tumbleweedpkg:rpm/suse/uriparser&distro=SUSE%20Package%20Hub%2015
< 0.8.5-lp150.2.3.1+ 2 more
- (no CPE)range: < 0.8.5-lp150.2.3.1
- (no CPE)range: < 0.9.5-1.2
- (no CPE)range: < 0.8.5-bp150.2.3.1
Patches
Vulnerability mechanics
References
4- access.redhat.com/errata/RHSA-2019:2280mitrevendor-advisoryx_refsource_REDHAT
- github.com/uriparser/uriparser/blob/uriparser-0.9.0/ChangeLogmitrex_refsource_MISC
- github.com/uriparser/uriparser/commit/f76275d4a91b28d687250525d3a0c5509bbd666fmitrex_refsource_MISC
- lists.debian.org/debian-lts-announce/2018/11/msg00019.htmlmitremailing-listx_refsource_MLIST
News mentions
0No linked articles in our index yet.