rpm package
suse/graphviz-plugins&distro=SUSE Linux Enterprise Server 12 SP5
pkg:rpm/suse/graphviz-plugins&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP5
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2020-18032 | — | < 2.28.0-29.6.1 | 2.28.0-29.6.1 | Apr 29, 2021 | Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component. | ||
| CVE-2018-10196 | — | < 2.28.0-29.3.17 | 2.28.0-29.3.17 | May 30, 2018 | NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file. |
- CVE-2020-18032Apr 29, 2021affected < 2.28.0-29.6.1fixed 2.28.0-29.6.1
Buffer Overflow in Graphviz Graph Visualization Tools from commit ID f8b9e035 and earlier allows remote attackers to execute arbitrary code or cause a denial of service (application crash) by loading a crafted file into the "lib/common/shapes.c" component.
- CVE-2018-10196May 30, 2018affected < 2.28.0-29.3.17fixed 2.28.0-29.3.17
NULL pointer dereference vulnerability in the rebuild_vlists function in lib/dotgen/conc.c in the dotgen library in Graphviz 2.40.1 allows remote attackers to cause a denial of service (application crash) via a crafted file.