ALAS2-2019-1328 --- mercurial, emacs-mercurialID: oval:org.secpod.oval:def:1700233 | Date: (C)2019-10-28 (M)2023-11-13 |
Class: PATCH | Family: unix |
An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read located in endianrw.h. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service or possibly have unspecified other impact when a victim opens a specially crafted file.An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service or possibly have unspecified other impact when a victim opens a specially crafted file.
Product: |
mercurial |
emacs-mercurial |