VYPR

rpm package

suse/augeas&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/augeas&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (2)

  • CVE-2014-8119HigDec 29, 2017
    affected < 0.9.0-3.17.2fixed 0.9.0-3.17.2

    The find_ifcfg_path function in netcf before 0.2.7 might allow attackers to cause a denial of service (application crash) via vectors involving augeas path expressions.

  • CVE-2017-7555CriAug 17, 2017
    affected < 0.9.0-3.21.3.1fixed 0.9.0-3.21.3.1

    Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible c