The ledger::parse_date_mask_routine function in times.cc in Ledger 3.1.1 allows remote malicious users to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
ledger-cli ledger 3.1.1 |