Vulnerabilities (CVE)

Filtered by vendor Opensuse Subscribe

Filtered by product Libsolv

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 3 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2018-20534	2 Canonical, Opensuse	2 Ubuntu Linux, Libsolv	2019-10-03	4.3 MEDIUM	6.5 MEDIUM
DISPUTED There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite and not the underlying library. It cannot be exploited in any real-world application.
CVE-2018-20532	2 Canonical, Opensuse	2 Ubuntu Linux, Libsolv	2019-08-06	4.3 MEDIUM	6.5 MEDIUM
There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.
CVE-2018-20533	2 Canonical, Opensuse	2 Ubuntu Linux, Libsolv	2019-08-06	4.3 MEDIUM	6.5 MEDIUM
There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.