Lucene search
IBM7E663D2444C9E01B43795B9791D0F57EB7AEB3064FDF5440564AB794E32F015EHistoryJun 03, 2021 - 1:37 a.m.
Security Bulletin: Vulnerability in GNU gettext affects IBM Spectrum Protect Plus (CVE-2018-18751)
2021-06-0301:37:52
www.ibm.com
17
ibm
spectrum protect plus
gnu gettext
denial of service
vulnerability
cve-2018-18751
EPSS
0.02
Percentile
88.9%
Summary
Denial of service vulnerability in GNU gettext may affect IBM Spectrum Protect Plus.
Vulnerability Details
CVEID:CVE-2018-18751
**DESCRIPTION:**GNU gettext is vulnerable to a denial of service, caused by a double free flaw in the default_add_message function in read-catalog.c. By persuading a victim to open a specially-crafted file, a remote attacker could exploit this vulnerability to cause a denial of service condition.
CVSS Base score: 3.3
CVSS Temporal Score: See: https://exchange.xforce.ibmcloud.com/vulnerabilities/152105 for the current score.
CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
Affected Products and Versions
| Affected Product(s) | Version(s) |
|---|---|
| IBM Spectrum Protect Plus | 10.1.0-10.1.6 |
Remediation/Fixes
| Spectrum Protect Plus Release | First Fixing VRM Level | Platform | Link to Fix/Target Availabilttiy |
|---|---|---|---|
| 10.1 | 10.1.6 ifix3 | Linux | https://www.ibm.com/support/pages/node/6254732 |
Workarounds and Mitigations
None
Related
fedora
fedora
[SECURITY] Fedora 28 Update: gettext-0.19.8.1-18.fc28
2018-11-27 17:13:12
[SECURITY] Fedora 29 Update: gettext-0.19.8.1-18.fc29
2018-11-12 02:15:46
redhat
redhat
(RHSA-2020:2846) Low: gettext security update
2020-07-07 08:36:33
(RHSA-2019:3643) Low: gettext security update
2019-11-05 18:10:22
(RHSA-2020:2485) Low: gettext security update
2020-06-10 14:51:51
nessus
nessus
CentOS 8 : gettext (CESA-2019:3643)
2021-01-29 00:00:00
EulerOS Virtualization 3.0.2.2 : gettext (EulerOS-SA-2020-1469)
2020-04-16 00:00:00
openvas
openvas
Fedora Update for gettext FEDORA-2018-d6211abfb0
2019-05-07 00:00:00
Huawei EulerOS: Security Advisory for gettext (EulerOS-SA-2020-1248)
2020-03-13 00:00:00
Huawei EulerOS: Security Advisory for gettext (EulerOS-SA-2019-2320)
2020-01-23 00:00:00
amazon
amazon
Low: gettext
2020-08-18 19:49:00
rocky
rocky
gettext security update
2019-11-05 18:10:22
archlinux
archlinux
[ASA-201908-14] gettext: arbitrary code execution
2019-08-24 00:00:00
suse
suse
Security update for gettext-runtime (moderate)
2020-08-28 00:00:00
Security update for gettext-runtime (moderate)
2020-08-27 00:00:00
Security update for gettext-runtime (moderate)
2020-09-08 00:00:00
centos
centos
emacs, gettext security update
2020-04-08 18:02:32
osv
osv
Low: gettext security update
2019-11-05 18:10:22
Low: gettext security update
2019-11-05 18:10:22
CVE-2018-18751
2018-10-29 12:29:09
ubuntucve
ubuntucve
CVE-2018-18751
2018-10-29 00:00:00
ibm
ibm
cvelist
cvelist
CVE-2018-18751
2018-10-28 17:00:00
nvd
nvd
CVE-2018-18751
2018-10-29 12:29:09
debiancve
debiancve
CVE-2018-18751
2018-10-29 12:29:09
alpinelinux
alpinelinux
CVE-2018-18751
2018-10-29 12:29:09
oraclelinux
oraclelinux
gettext security update
2019-11-14 00:00:00
gettext security and bug fix update
2020-04-06 00:00:00
cloudfoundry
cloudfoundry
USN-3815-1: gettext vulnerability | Cloud Foundry
2018-11-20 00:00:00
redhatcve
redhatcve
CVE-2018-18751
2020-04-09 12:21:50
ubuntu
ubuntu
gettext vulnerability
2018-11-12 00:00:00
gettext vulnerability
2018-11-12 00:00:00
mageia
mageia
Updated gettext packages fix security vulnerability
2018-11-21 20:51:03
prion
prion
Double free
2018-10-29 12:29:00
veracode
veracode
Arbitrary Code Execution
2019-11-06 00:21:07
almalinux
almalinux
Low: gettext security update
2019-11-05 18:10:22
cve
cve
CVE-2018-18751
2018-10-29 12:29:09
photon
photon
Critical Photon OS Security Update - PHSA-2020-0105
2020-06-24 00:00:00
Critical Photon OS Security Update - PHSA-2020-3.0-0105
2020-06-24 00:00:00
EPSS
0.02
Percentile
88.9%
Related for 7E663D2444C9E01B43795B9791D0F57EB7AEB3064FDF5440564AB794E32F015E