Published: 04/09/2018 Updated: 31/07/2019

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

In GNOME GLib 2.56.1, g_markup_parse_context_end_parse() in gmarkup.c has a NULL pointer dereference.

Vulnerable Product	Search on Vulmon	Subscribe to Product
gnome glib 2.56.1
canonical ubuntu linux 16.04
canonical ubuntu linux 12.04
canonical ubuntu linux 18.04
canonical ubuntu linux 14.04

Several security issues were fixed in GLib ...

In GNOME GLib 2561, g_markup_parse_context_end_parse() in gmarkupc has a NULL pointer dereference (CVE-2018-16428) GNOME GLib 2561 has an out-of-bounds read vulnerability in g_markup_parse_context_parse() in gmarkupc, related to utf8_str() (CVE-2018-16429) ...

In GNOME GLib 2561, g_markup_parse_context_end_parse() in gmarkupc has a NULL pointer dereference (CVE-2018-16428) GNOME GLib 2561 has an out-of-bounds read vulnerability in g_markup_parse_context_parse() in gmarkupc, related to utf8_str() (CVE-2018-16429) The keyfile settings backend in GNOME GLib (aka glib20) before 2600 creates direct ...

In GNOME GLib 2561, g_markup_parse_context_end_parse() in gmarkupc has a NULL pointer dereference ...

CWE-476 https://gitlab.gnome.org/GNOME/glib/issues/1364 https://gitlab.gnome.org/GNOME/glib/commit/fccef3cc822af74699cca84cd202719ae61ca3b9 http://www.securityfocus.com/bid/105210 https://usn.ubuntu.com/3767-1/https://usn.ubuntu.com/3767-2/https://lists.debian.org/debian-lts-announce/2019/07/msg00029.html http://www.openwall.com/lists/oss-security/2020/02/14/3 https://nvd.nist.gov https://usn.ubuntu.com/3767-2/

CVE-2018-16428

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect