1. CVE-Search
  2. CVE-2019-19918
ID CVE-2019-19918
Summary Lout 3.40 has a heap-based buffer overflow in the srcnext() function in z02.c.
References
Vulnerable Configurations
  • cpe:2.3:a:lout_project:lout:3.40:*:*:*:*:*:*:*
    cpe:2.3:a:lout_project:lout:3.40:*:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
  • cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:opensuse:backports_sle:15.0:sp1:*:*:*:*:*:*
  • cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
    cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
  • cpe:2.3:a:opensuse:backports_sle:15.0:sp2:*:*:*:*:*:*
    cpe:2.3:a:opensuse:backports_sle:15.0:sp2:*:*:*:*:*:*
  • cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
    cpe:2.3:o:fedoraproject:fedora:33:*:*:*:*:*:*:*
CVSS
Base: 6.8 (as of 14-12-2022 - 18:36)
Impact:
Exploitability:
CWE CWE-787
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:M/Au:N/C:P/I:P/A:P
refmap via4
fedora
  • FEDORA-2020-81c80ff1ed
  • FEDORA-2020-869cd99560
  • FEDORA-2020-88fb82d1cd
misc https://lists.gnu.org/archive/html/lout-users/2019-12/msg00001.html
suse
  • openSUSE-SU-2020:1771
  • openSUSE-SU-2020:1772
  • openSUSE-SU-2020:1812
  • openSUSE-SU-2020:1813
Last major update 14-12-2022 - 18:36
Published 20-12-2019 - 20:15
Last modified 14-12-2022 - 18:36
Back to Top