← Back

CVE-2019-19918

nvd nist
Published: Dec 20, 2019Modified: Nov 21, 2024

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c.

Affected (8)

Lout Project
1 product
Lout
Fedoraproject
1 product
Fedora
Opensuse
2 products
Backports Sle
Leap
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Lout
Version 3.40
Configuration B
7 vulnerable
Vulnerable SoftwareAffected Versions
Fedoraproject
Fedora
Version 31
Fedora
Version 32
Fedora
Version 33
Opensuse
Backports Sle
Version 15.0 sp1
Backports Sle
Version 15.0 sp2
Opensuse
Leap
Version 15.1
Leap
Version 15.2

Related CWEs

CWE-787
Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.

References (16)

Source: cve@mitre.org
Broken LinkThird Party Advisory
Source: cve@mitre.org
Broken LinkThird Party Advisory
Source: cve@mitre.org
Broken LinkThird Party Advisory
Source: cve@mitre.org
Broken LinkThird Party Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
ExploitMailing ListThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitMailing ListThird Party Advisory

Timeline

No history available yet.