CVE-2014-1236

EPSS 7.9%

發布日:2014/1/10修改日:2026/4/28

描述

Stack-based buffer overflow in the chkNum function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via vectors related to a "badly formed number" and a "long digit list."

受影響套件(1)

Debian/graphvizfrom 0, < 2.26.3-16.1

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2014-1236