An issue was discovered in GNU gettext 0.19.8. There is a double free in default_add_message in read-catalog.c, related to an invalid free in po_gram_parse in po-gram-gen.y, as demonstrated by lt-msgfmt.

References

bugzilla.redhat.com/show_bug.cgi?id=1647043

www.cve.org/CVERecord?id=CVE-2018-18751 https://nvd.nist.gov/vuln/detail/CVE-2018-18751

fedora 2

redhat 5

nessus 33

openvas 16

amazon 1

rocky 1

archlinux 1

suse 3

centos 1

osv 3

ubuntucve 1

ibm 5

cvelist 1

nvd 1

debiancve 1

alpinelinux 1

oraclelinux 2

cloudfoundry 1

ubuntu 2

prion 1

mageia 1

veracode 1

almalinux 1

cve 1

photon 5

fedora

[SECURITY] Fedora 28 Update: gettext-0.19.8.1-18.fc28

2018-11-27 17:13:12

[SECURITY] Fedora 29 Update: gettext-0.19.8.1-18.fc29

2018-11-12 02:15:46

redhat

(RHSA-2020:2846) Low: gettext security update

2020-07-07 08:36:33

(RHSA-2019:3643) Low: gettext security update

2019-11-05 18:10:22

(RHSA-2020:2485) Low: gettext security update

2020-06-10 14:51:51

nessus

CentOS 8 : gettext (CESA-2019:3643)

2021-01-29 00:00:00

EulerOS Virtualization 3.0.2.2 : gettext (EulerOS-SA-2020-1469)

2020-04-16 00:00:00

NewStart CGSL CORE 5.04 / MAIN 5.04 : gettext Vulnerability (NS-SA-2020-0070)

2020-12-09 00:00:00

openvas

Fedora Update for gettext FEDORA-2018-d6211abfb0

2019-05-07 00:00:00

Huawei EulerOS: Security Advisory for gettext (EulerOS-SA-2020-1248)

2020-03-13 00:00:00

Huawei EulerOS: Security Advisory for gettext (EulerOS-SA-2019-2320)

2020-01-23 00:00:00

amazon

Low: gettext

2020-08-18 19:49:00

rocky

gettext security update

2019-11-05 18:10:22

archlinux

[ASA-201908-14] gettext: arbitrary code execution

2019-08-24 00:00:00

suse

Security update for gettext-runtime (moderate)

2020-08-28 00:00:00

Security update for gettext-runtime (moderate)

2020-08-27 00:00:00

Security update for gettext-runtime (moderate)

2020-09-08 00:00:00

centos

emacs, gettext security update

2020-04-08 18:02:32

osv

Low: gettext security update

2019-11-05 18:10:22

Low: gettext security update

2019-11-05 18:10:22

CVE-2018-18751

2018-10-29 12:29:09

ubuntucve

CVE-2018-18751

2018-10-29 00:00:00

ibm

Security Bulletin: IBM Event Streams is affected by GNU gettext vulnerability CVE-2018-18751

2021-01-15 14:41:11

Security Bulletin: Vulnerability in GNU gettext affects IBM Spectrum Protect Plus (CVE-2018-18751)

2021-06-03 01:37:52

Security Bulletin: IBM Event Streams is affected by gettext vulnerability CVE-2018-18751

2019-03-29 11:00:02

cvelist

CVE-2018-18751

2018-10-28 17:00:00

nvd

CVE-2018-18751

2018-10-29 12:29:09

debiancve

CVE-2018-18751

2018-10-29 12:29:09

alpinelinux

CVE-2018-18751

2018-10-29 12:29:09

oraclelinux

gettext security update

2019-11-14 00:00:00

gettext security and bug fix update

2020-04-06 00:00:00

cloudfoundry

USN-3815-1: gettext vulnerability | Cloud Foundry

2018-11-20 00:00:00

ubuntu

gettext vulnerability

2018-11-12 00:00:00

gettext vulnerability

2018-11-12 00:00:00

prion

Double free

2018-10-29 12:29:00

mageia

Updated gettext packages fix security vulnerability

2018-11-21 20:51:03

veracode

Arbitrary Code Execution

2019-11-06 00:21:07

almalinux

Low: gettext security update

2019-11-05 18:10:22

cve

CVE-2018-18751

2018-10-29 12:29:09

photon

Critical Photon OS Security Update - PHSA-2020-0105

2020-06-24 00:00:00

Critical Photon OS Security Update - PHSA-2020-3.0-0105

2020-06-24 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0116

2018-12-26 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.02

Percentile

88.9%

JSON

Related for RH:CVE-2018-18751