PT-2019-10227 · Libvterm+3 · Libvterm+3

5Hadowblad3

Published

2019-02-24

Updated

2020-03-30

CVE-2018-20786

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: libvterm through 0+bzr726

Description: The issue is related to how libvterm handles certain out-of-memory conditions, which can lead to a denial of service, causing the application to crash. This is related to the files screen.c, state.c, and vterm.c.

Recommendations: For libvterm through 0+bzr726, consider applying memory management fixes to prevent out-of-memory conditions from causing application crashes. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

DoS

NULL Pointer Dereference

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-476

Related Identifiers

ALT-PU-2019-2685

CVE-2018-20786

USN-4309-1

Affected Products

Alt Linux

Debian

Ubuntu

Libvterm

PT-2019-10227 · Libvterm+3 · Libvterm+3

CVE-2018-20786

Weakness Enumeration

Related Identifiers

Affected Products

References · 17