Tcl Tk : Security Vulnerabilities, CVEs, Published In 2008
Stack-based buffer overflow in the ReadImage function in tkImgGIF.c in Tk (Tcl/Tk) before 8.5.1 allows remote attackers to execute arbitrary code via a crafted GIF image, a similar issue to CVE-2006-4484.
Max CVSS
6.8
EPSS Score
20.66%
Published
2008-02-07
Updated
2018-10-15
Algorithmic complexity vulnerability in the regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (memory consumption) via a crafted "complex" regular expression with doubly-nested states.
Max CVSS
6.8
EPSS Score
1.45%
Published
2008-01-09
Updated
2018-10-15
The regular expression parser in TCL before 8.4.17, as used in PostgreSQL 8.2 before 8.2.6, 8.1 before 8.1.11, 8.0 before 8.0.15, and 7.4 before 7.4.19, allows remote authenticated users to cause a denial of service (backend crash) via an out-of-bounds backref number.
Max CVSS
6.8
EPSS Score
1.15%
Published
2008-01-09
Updated
2018-10-15
3 vulnerabilities found