VYPR

rpm package

suse/libevent&distro=SUSE Linux Enterprise Server for Raspberry Pi 12 SP2

pkg:rpm/suse/libevent&distro=SUSE%20Linux%20Enterprise%20Server%20for%20Raspberry%20Pi%2012%20SP2

Vulnerabilities (3)

  • CVE-2016-10197HigMar 15, 2017
    affected < 2.0.21-6.3.1fixed 2.0.21-6.3.1

    The search_make_new function in evdns.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (out-of-bounds read) via an empty hostname.

  • CVE-2016-10196HigMar 15, 2017
    affected < 2.0.21-6.3.1fixed 2.0.21-6.3.1

    Stack-based buffer overflow in the evutil_parse_sockaddr_port function in evutil.c in libevent before 2.1.6-beta allows attackers to cause a denial of service (segmentation fault) via vectors involving a long string in brackets in the ip_as_string argument.

  • CVE-2016-10195CriMar 15, 2017
    affected < 2.0.21-6.3.1fixed 2.0.21-6.3.1

    The name_parse function in evdns.c in libevent before 2.1.6-beta allows remote attackers to have unspecified impact via vectors involving the label_len variable, which triggers an out-of-bounds stack read.