| 2020-05-30 17:57:28 |
Ghada Khalil |
bug |
|
|
added bug |
| 2020-05-30 17:57:40 |
Ghada Khalil |
information type |
Public |
Public Security |
|
| 2020-05-30 17:57:44 |
Ghada Khalil |
cve linked |
|
2018-18751 |
|
| 2020-05-30 17:58:01 |
Ghada Khalil |
tags |
|
stx.3.0 stx.4.0 stx.security |
|
| 2020-05-30 18:24:19 |
Ghada Khalil |
description |
CVE-2018-18751: gettext: double free in default_add_messag
CVSSv2: 7.5 (AV:N/AC:L/Au:N/C/I/A)
Description:
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18751
https://access.redhat.com/errata/RHSA-2020:1138
https://www.mail-archive.com/centos-cr-announce@centos.org/msg05941.html
The new RPMs are:
gettext-0.19.8.1-3.el7.x86_64.rpm
gettext-libs-0.19.8.1-3.el7.x86_64.rpm
gettext-devel-0.19.8.1-3.el7.x86_64.rpm
gettext-common-devel-0.19.8.1-3.el7.noarch.rpm
gettext-0.19.8.1-3.el7.src.rpm |
CVE-2018-18751: gettext: double free in default_add_messag
CVSSv2: 7.5 (AV:N/AC:L/Au:N/C/I/A)
Description:
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18751
https://access.redhat.com/errata/RHSA-2020:1138
https://www.mail-archive.com/centos-cr-announce@centos.org/msg05941.html
The new RPMs are:
gettext-0.19.8.1-3.el7.x86_64.rpm
gettext-libs-0.19.8.1-3.el7.x86_64.rpm
gettext-devel-0.19.8.1-3.el7.x86_64.rpm
gettext-common-devel-0.19.8.1-3.el7.noarch.rpm
gettext-0.19.8.1-3.el7.src.rpm
Reported By: May CVE Scan |
|
| 2020-05-30 18:27:16 |
Ghada Khalil |
description |
CVE-2018-18751: gettext: double free in default_add_messag
CVSSv2: 7.5 (AV:N/AC:L/Au:N/C/I/A)
Description:
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18751
https://access.redhat.com/errata/RHSA-2020:1138
https://www.mail-archive.com/centos-cr-announce@centos.org/msg05941.html
The new RPMs are:
gettext-0.19.8.1-3.el7.x86_64.rpm
gettext-libs-0.19.8.1-3.el7.x86_64.rpm
gettext-devel-0.19.8.1-3.el7.x86_64.rpm
gettext-common-devel-0.19.8.1-3.el7.noarch.rpm
gettext-0.19.8.1-3.el7.src.rpm
Reported By: May CVE Scan |
CVE-2018-18751: gettext: double free in default_add_messag
CVSSv2: 7.5 (AV:N/AC:L/Au:N/C/I/A)
Description:
An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.
References:
https://nvd.nist.gov/vuln/detail/CVE-2018-18751
https://access.redhat.com/errata/RHSA-2020:1138
https://www.mail-archive.com/centos-cr-announce@centos.org/msg05941.html
The new RPMs are:
gettext-0.19.8.1-3.el7.x86_64.rpm
gettext-libs-0.19.8.1-3.el7.x86_64.rpm
gettext-devel-0.19.8.1-3.el7.x86_64.rpm
gettext-common-devel-0.19.8.1-3.el7.noarch.rpm
gettext-0.19.8.1-3.el7.src.rpm
Reported By: StarlingX May 2020 CVE Scan |
|
| 2020-06-01 13:54:52 |
Ghada Khalil |
starlingx: status |
New |
Triaged |
|
| 2020-06-01 13:54:56 |
Ghada Khalil |
starlingx: importance |
Undecided |
High |
|
| 2020-06-01 14:01:55 |
Ghada Khalil |
bug |
|
|
added subscriber Allain Legacy |
| 2020-06-04 01:46:40 |
Poornima Y N |
starlingx: assignee |
|
Poornima Y N (poornimayn) |
|
| 2020-06-04 13:36:22 |
Ghada Khalil |
bug |
|
|
added subscriber Jim Somerville |
| 2020-06-10 10:00:26 |
OpenStack Infra |
starlingx: status |
Triaged |
In Progress |
|
| 2020-06-10 13:26:24 |
OpenStack Infra |
starlingx: status |
In Progress |
Fix Released |
|
| 2020-07-09 21:52:11 |
Ghada Khalil |
tags |
stx.3.0 stx.4.0 stx.security |
in-r-stx30 stx.3.0 stx.4.0 stx.security |
|
