PT-2019-16051 · Libmysofa+2 · Libmysofa+2

Gutiniaoo

Publicado

2019-10-31

Atualizado

2021-03-21

CVE-2019-20016

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions libmysofa before 2019-11-24

Description The issue is related to the improper restriction of recursive function calls, which can lead to stack consumption. This has been demonstrated in functions such as readOHDRHeaderMessageDatatype in dataobject.c and directblockRead in fractalhead.c.

Recommendations For libmysofa versions before 2019-11-24, download and update to version 0.9 or later, which should fully remediate this issue, as long as the download is made after 2019-12-06.

Exploit

Correção

Memory Corruption

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-787

Identificadores relacionados

BDU:2025-12504

CVE-2019-20016

OPENSUSE-SU-2021:0444-1

OPENSUSE-SU-2021:0459-1

OPENSUSE-SU-2021_0444-1

OPENSUSE-SU-2024:10960-1

Produtos afetados

Astra Linux

Suse

Libmysofa

PT-2019-16051 · Libmysofa+2 · Libmysofa+2

CVE-2019-20016

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 43