RSS   Vulnerabilities for 'Libevt'   RSS

2018-03-17
 
CVE-2018-8754

CWE-125
 

 
** DISPUTED ** The libevt_record_values_read_event() function in libevt_record_values.c in libevt before 2018-03-17 does not properly check for out-of-bounds values of user SID data size, strings size, or data size. NOTE: the vendor has disputed this as described in libyal/libevt issue 5 on GitHub.

 


Copyright 2019, cxsecurity.com

 

Back to Top