PT-2019-16007 · None+2 · Lout+2

Frederic Cambus

·

Publicado

2019-12-20

·

Atualizado

2024-06-15

·

CVE-2019-19918

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Lout version 3.40
Description The issue is related to a heap-based buffer overflow in the srcnext() function, located in the z02.c file.
Recommendations For version 3.40, consider disabling the srcnext() function as a temporary workaround until a patch is available.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

ALT-PU-2020-3465
ALT-PU-2020-3498
ALT-PU-2022-1926
CVE-2019-19918
MGASA-2020-0411
OPENSUSE-SU-2020:1771-1
OPENSUSE-SU-2020:1772-1
OPENSUSE-SU-2020:1812-1
OPENSUSE-SU-2020:1813-1
OPENSUSE-SU-2020_1771-1
OPENSUSE-SU-2020_1772-1
OPENSUSE-SU-2024:11027-1

Produtos afetados

Alt Linux
Lout
Suse