PT-2019-14549 · Gnu+2 · Gnu Cflow+2

Wcventure

Published

2019-09-09

Updated

2024-06-15

CVE-2019-16166

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions GNU cflow versions prior to 1.7

Description The issue is related to a heap-based buffer over-read in the nexttoken function in parser.c.

Recommendations For GNU cflow versions prior to 1.7, update to version 1.7 or later to resolve the issue.

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

ALT-PU-2022-1618

ALT-PU-2022-2442

ALT-PU-2023-5543

CVE-2019-16166

OPENSUSE-SU-2024:11709-1

Alt Linux

Debian

Gnu Cflow