rpm package
suse/augeas&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
pkg:rpm/suse/augeas&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-8119 | Hig | 7.5 | < 0.9.0-3.17.2 | 0.9.0-3.17.2 | Dec 29, 2017 | The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions. | |
| CVE-2017-7555 | Cri | 9.8 | < 0.9.0-3.21.3.1 | 0.9.0-3.21.3.1 | Aug 17, 2017 | Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible c |
- affected < 0.9.0-3.17.2fixed 0.9.0-3.17.2
The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.
- affected < 0.9.0-3.21.3.1fixed 0.9.0-3.21.3.1
Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible c