Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
call-cc chicken vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-45145
egg-compile.scm in CHICKEN 5.x prior to 5.3.1 allows arbitrary OS command execution during package installation via escape characters in a .egg file.
Call-cc Chicken
9.8
CVSSv3
CVE-2014-6310
Buffer overflow in CHICKEN 4.9.0 and 4.9.0.1 may allow remote malicious users to execute arbitrary code via the 'select' function.
Call-cc Chicken 4.9.0.1
Call-cc Chicken 4.9.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
9.8
CVSSv3
CVE-2012-6125
Chicken prior to 4.8.0 is susceptible to algorithmic complexity attacks related to hash table collisions.
Call-cc Chicken
9.8
CVSSv3
CVE-2016-6830
The "process-execute" and "process-spawn" procedures in CHICKEN Scheme used fixed-size buffers for holding the arguments and environment variables to use in its execve() call. This would allow user-supplied argument/environment variable lists to trigger a buff...
Call-cc Chicken
8.8
CVSSv3
CVE-2013-2075
Multiple buffer overflows in the (1) R5RS char-ready, (2) tcp-accept-ready, and (3) file-select procedures in Chicken up to and including 4.8.0.3 allows malicious users to cause a denial of service (crash) by opening a file descriptor with a large integer value. NOTE: this issue ...
Call-cc Chicken
8.8
CVSSv3
CVE-2013-2024
OS command injection vulnerability in the "qs" procedure from the "utils" module in Chicken prior to 4.9.0.
Call-cc Chicken
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
8.1
CVSSv3
CVE-2017-6949
An issue exists in CHICKEN Scheme up to and including 4.12.0. When using a nonstandard CHICKEN-specific extension to allocate an SRFI-4 vector in unmanaged memory, the vector size would be used in unsanitised form as an argument to malloc(). With an unexpected size, the impact ma...
Call-cc Chicken 4.12.0
7.5
CVSSv3
CVE-2012-6122
Buffer overflow in the thread scheduler in Chicken prior to 4.8.0.1 allows malicious users to cause a denial of service (crash) by opening a file descriptor with a large integer value.
Call-cc Chicken
7.5
CVSSv3
CVE-2017-11343
Due to an incomplete fix for CVE-2012-6125, all versions of CHICKEN Scheme up to and including 4.12.0 are vulnerable to an algorithmic complexity attack. An attacker can provide crafted input which, when inserted into the symbol table, will result in O(n) lookup time.
Call-cc Chicken
7.5
CVSSv3
CVE-2017-9334
An incorrect "pair?" check in the Scheme "length" procedure results in an unsafe pointer dereference in all CHICKEN Scheme versions before 4.13, which allows an malicious user to cause a denial of service by passing an improper list to an application that call...
Call-cc Chicken
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »