VYPR

rpm package

suse/libu2f-host&distro=SUSE Linux Enterprise Module for Basesystem 15 SP2

pkg:rpm/suse/libu2f-host&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP2

Vulnerabilities (2)

  • CVE-2018-20340Mar 17, 2019
    affected < 1.1.10-3.9.1fixed 1.1.10-3.9.1

    Yubico libu2f-host 1.1.6 contains unchecked buffers in devs.c, which could enable a malicious token to exploit a buffer overflow. An attacker could use this to attempt to execute malicious code using a crafted USB device masquerading as a security token on a computer where the af

  • CVE-2019-9578Mar 5, 2019
    affected < 1.1.10-3.9.1fixed 1.1.10-3.9.1

    In devs.c in Yubico libu2f-host before 1.1.8, the response to init is misparsed, leaking uninitialized stack memory back to the device.