7.5
CVSSv2

CVE-2018-16428

Published: 04/09/2018 Updated: 31/07/2019
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Summary

In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer dereference.

Vulnerability Trend

Affected Products

Vendor Product Versions
GnomeGlib2.56.1
CanonicalUbuntu Linux12.04, 14.04, 16.04, 18.04

Vendor Advisories

Several security issues were fixed in GLib ...
Several security issues were fixed in GLib ...
In GNOME GLib 2561, g_markup_parse_context_end_parse() in gmarkupc has a NULL pointer dereference ...

Mailing Lists

On Fri, 14 Feb 2020 at 00:11:00 +0100, security minded wrote: The CVE IDs for the individual vulnerable components are enough to describe the vulnerability You don't need new CVE IDs to describe the fact that the installer installs vulnerable components Linux distribution packages are like installers, if you think about it - and when a securit ...

Github Repositories

Scan Docker Image This script purpose is to scan Docker images for vulnerabilities Get a token: microscanneraquaseccom/signup Usage: SCANNER_TOKEN=<TOKEN> SCANNER_IMAGE=jboss/keycloak:601 /docker-scansh --silent Sample output: { "scan_started": { "seconds": 1563490473, "nanos": 733846066 }, "scan_dura