CVE-2014-1236

EPSS 7.9%

Published: 1/10/2014Modified: 4/28/2026

Description

Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list."

Affected packages (1)

Debian/graphvizfrom 0, < 2.26.3-16.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-1236