CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-6719
https://notcve.org/view.php?id=CVE-2019-6719
An issue has been found in libIEC61850 v1.3.1. There is a use-after-free in the getState function in mms/iso_server/iso_server.c, as demonstrated by examples/server_example_goose/server_example_goose.c and examples/server_example_61400_25/server_example_61400_25.c. Se ha encontrado un problema en libIEC61850 v1.3.1. Hay un uso de memoria previamente liberada en la función getState en mms/iso_server/iso_server.c, tal y como queda demostrado con examples/server_example_goose/server_example_goose.c y examples/server_example_61400_25/server_example_61400_25.c. • https://github.com/mz-automation/libiec61850/issues/111 • CWE-416: Use After Free •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 2CVE-2019-6135
https://notcve.org/view.php?id=CVE-2019-6135
An issue has been found in libIEC61850 v1.3.1. Memory_malloc in hal/memory/lib_memory.c has a memory leak when called from Asn1PrimitiveValue_create in mms/asn1/asn1_ber_primitive_value.c, as demonstrated by goose_publisher_example.c and iec61850_9_2_LE_example.c. Se ha encontrado un problema en libIEC61850 v1.3.1. Memory_malloc en hal/memory/lib_memory.c tiene una fuga de memoria al ser llamado desde Asn1PrimitiveValue_create en mms/asn1/asn1_ber_primitive_value.c, tal y como queda demostrado con goose_publisher_example.c y iec61850_9_2_LE_example.c. • https://github.com/mz-automation/libiec61850/issues/103 https://github.com/mz-automation/libiec61850/issues/104 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-6138
https://notcve.org/view.php?id=CVE-2019-6138
An issue has been found in libIEC61850 v1.3.1. Memory_malloc and Memory_calloc in hal/memory/lib_memory.c have memory leaks when called from mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_mapping.c, and server/mms_mapping/mms_sv.c (via common/string_utilities.c), as demonstrated by iec61850_9_2_LE_example.c. Se ha encontrado un problema en libIEC61850 v1.3.1. Memory_malloc y Memory_calloc en hal/memory/lib_memory.c tienen fugas de memoria al ser llamados desde mms/iso_mms/common/mms_value.c, server/mms_mapping/mms_mapping.c y server/mms_mapping/mms_sv.c (mediante common/string_utilities.c), tal y como queda demostrado con iec61850_9_2_LE_example.c. • https://github.com/mz-automation/libiec61850/issues/103 • CWE-401: Missing Release of Memory after Effective Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1CVE-2019-6136
https://notcve.org/view.php?id=CVE-2019-6136
An issue has been found in libIEC61850 v1.3.1. Ethernet_setProtocolFilter in hal/ethernet/linux/ethernet_linux.c has a SEGV, as demonstrated by sv_subscriber_example.c and sv_subscriber.c. Se ha encontrado un problema en libIEC61850 v1.3.1. Ethernet_setProtocolFilter en hal/ethernet/linux/ethernet_linux.c tiene un SEGV, tal y como queda demostrado con sv_subscriber_example.c y sv_subscriber.c. • https://github.com/mz-automation/libiec61850/issues/105 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 2CVE-2018-19185
https://notcve.org/view.php?id=CVE-2018-19185
An issue has been found in libIEC61850 v1.3. It is a heap-based buffer overflow in BerEncoder_encodeOctetString in mms/asn1/ber_encoder.c. This is exploitable even after CVE-2018-18834 has been patched, with a different dataSetValue sequence than the CVE-2018-18834 attack vector. Se ha detectado un problema en libIEC61850 v1.3. Es un desbordamiento de búfer basado en memoria dinámica (heap) en BerEncoder_encodeOctetString en mms/asn1/ber_encoder.c. • https://github.com/fouzhe/security/tree/master/libiec61850#another-heap-buffer-overflow-in-function-berencoder_encodeoctetstring https://github.com/mz-automation/libiec61850/issues/87 • CWE-787: Out-of-bounds Write •