CVE search results

1 – 10 of 10 results

Detailed view

Sort by:

CVE-2021-44568

Medium priority

Needs evaluation

Two heap-overflow vulnerabilities exist in openSUSE/libsolv libsolv through 13 Dec 2020 in the decisionmap variable via the resolve_dependencies function at src/solver.c (line 1940 & line 1995), which could cause a remote Denial...

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2021-33938

Medium priority

Vulnerable

Buffer overflow vulnerability in function prune_to_recommended in src/policy.c in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Vulnerable	Vulnerable	Needs evaluation

CVE-2021-33930

Medium priority

Vulnerable

Buffer overflow vulnerability in function pool_installable_whatprovides in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Vulnerable	Vulnerable	Needs evaluation

CVE-2021-33929

Medium priority

Vulnerable

Buffer overflow vulnerability in function pool_disabled_solvable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Vulnerable	Vulnerable	Needs evaluation

CVE-2021-33928

Medium priority

Vulnerable

Buffer overflow vulnerability in function pool_installable in src/repo.h in libsolv before 0.7.17 allows attackers to cause a Denial of Service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Vulnerable	Vulnerable	Needs evaluation

CVE-2021-3200

Medium priority

Needs evaluation

Buffer overflow vulnerability in libsolv 2020-12-13 via the Solver * testcase_read(Pool *pool, FILE *fp, const char *testcase, Queue *job, char **resultp, int *resultflagsp function at src/testcase.c: line 2334, which could cause...

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Needs evaluation	Needs evaluation	Needs evaluation

CVE-2019-20387

Medium priority

Vulnerable

repodata_schema2id in repodata.c in libsolv before 0.7.6 has a heap-based buffer over-read via a last schema whose length is less than the length of the input schema.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	Not affected	Not affected	Not affected	Vulnerable	Vulnerable

CVE-2018-20534

Medium priority

Fixed

** DISPUTED ** There is an illegal address access at ext/testcase.c in libsolv.a in libsolv through 0.7.2 that will cause a denial of service. NOTE: third parties dispute this issue stating that the issue affects the test suite...

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	—	Fixed	Fixed	Fixed	Fixed

CVE-2018-20533

Medium priority

Fixed

There is a NULL pointer dereference at ext/testcase.c (function testcase_str2dep_complex) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	—	Fixed	Fixed	Fixed	Fixed

CVE-2018-20532

Medium priority

Fixed

There is a NULL pointer dereference at ext/testcase.c (function testcase_read) in libsolvext.a in libsolv through 0.7.2 that will cause a denial of service.

1 affected package

libsolv

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
libsolv	—	Fixed	Fixed	Fixed	Fixed

Search CVE reports