Your submission was sent successfully! Close

CVE-2019-25051

Published: 20 July 2021

objstack in GNU Aspell 0.60.8 has a heap-based buffer overflow in acommon::ObjStack::dup_top (called from acommon::StringMap::add and acommon::Config::lookup_list).

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
aspell
Launchpad, Ubuntu, Debian
bionic
Released (0.60.7~20110707-4ubuntu0.2)
focal
Released (0.60.8-1ubuntu0.1)
groovy Ignored
(reached end-of-life)
hirsute
Released (0.60.8-2ubuntu0.1)
impish
Released (0.60.8-3)
jammy
Released (0.60.8-3)
trusty
Released (0.60.7~20110707-1ubuntu1+esm2)
upstream Needs triage

xenial
Released (0.60.7~20110707-3ubuntu0.1+esm1)