GNU : Security Vulnerabilities, CVEs, Published In 2013 (Memory corruption)
Off-by-one error in the dane_raw_tlsa in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.16 and 3.2.x before 3.2.6 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries. NOTE: this issue is due to an incomplete fix for CVE-2013-4466.
Max CVSS
5.0
EPSS Score
0.10%
Published
2013-11-20
Updated
2018-10-30
Buffer overflow in the dane_query_tlsa function in the DANE library (libdane) in GnuTLS 3.1.x before 3.1.15 and 3.2.x before 3.2.5 allows remote servers to cause a denial of service (memory corruption) via a response with more than four DANE entries.
Max CVSS
5.0
EPSS Score
0.20%
Published
2013-11-20
Updated
2013-11-21
Buffer overflow in the extend_buffers function in the regular expression matcher (posix/regexec.c) in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service (memory corruption and crash) via crafted multibyte characters.
Max CVSS
5.0
EPSS Score
0.90%
Published
2013-02-08
Updated
2017-08-29
3 vulnerabilities found