CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 1CVE-2022-40320
https://notcve.org/view.php?id=CVE-2022-40320
cfg_tilde_expand in confuse.c in libConfuse 3.3 has a heap-based buffer over-read. La función cfg_tilde_expand en el archivo confuse.c en libConfuse 3.3 presenta una lectura excesiva del búfer en la región heap de la memoria • https://github.com/libconfuse/libconfuse/issues/163 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BSAZK4KAWRWNAFUBBXOYU3PVNH3X7226 https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/EDUT2V62V2XF2IT5TJFPB6P3EQ6X5VLL https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/FJKHAPJ6AUWVP4HDGKH4M5A2XXWQI73O • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 1CVE-2018-19760
https://notcve.org/view.php?id=CVE-2018-19760
cfg_init in confuse.c in libConfuse 3.2.2 has a memory leak. cfg_init en confuse.c en libConfuse 3.2.2 tiene una fuga de memoria. • https://bugzilla.redhat.com/show_bug.cgi?id=1649152 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 1CVE-2018-14447
https://notcve.org/view.php?id=CVE-2018-14447
trim_whitespace in lexer.l in libConfuse v3.2.1 has an out-of-bounds read. trim_whitespace en lexer.l en libConfuse v3.2.1 tiene una lectura fuera de límites. • http://hac425.unaux.com/index.php/archives/64 https://github.com/martinh/libconfuse/issues/109 https://lists.debian.org/debian-lts-announce/2018/08/msg00017.html • CWE-125: Out-of-bounds Read •