An integer overflow and several buffer overflow reads in libyara/modules/macho/macho.c in YARA v4.0.3 and previous versions could allow an malicious user to either cause denial of service or information disclosure via a malicious Mach-O file. Affects all versions before libyara 4.0.4
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
virustotal yara |
||
fedoraproject fedora 33 |
||
fedoraproject fedora 34 |