An out-of-bounds read was discovered in Libsolv when the last schema has a length that is less than the length of the input schema. A remote attacker may abuse this flaw to crash an application that uses Libsolv.

References

bugzilla.redhat.com/show_bug.cgi?id=1797072

nvd.nist.gov/vuln/detail/CVE-2019-20387

www.cve.org/CVERecord?id=CVE-2019-20387

nessus 11

nvd 1

cvelist 1

ubuntucve 1

photon 6

openvas 4

prion 1

oraclelinux 1

redhat 12

cve 1

debian 1

veracode 1

mageia 1

debiancve 1

osv 2

almalinux 1

rosalinux 1

ibm 2

nessus

CentOS 8 : libsolv (CESA-2020:4508)

2021-02-01 00:00:00

NewStart CGSL MAIN 6.02 : libsolv Vulnerability (NS-SA-2021-0060)

2021-03-10 00:00:00

RHEL 8 : libsolv (RHSA-2020:4508)

2020-11-04 00:00:00

nvd

CVE-2019-20387

2020-01-21 23:15:13

cvelist

CVE-2019-20387

2020-01-21 22:54:05

ubuntucve

CVE-2019-20387

2020-01-21 00:00:00

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0273

2020-02-08 00:00:00

Important Photon OS Security Update - PHSA-2020-0273

2020-02-08 00:00:00

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0205

2020-02-08 00:00:00

openvas

Debian: Security Advisory (DLA-2088-1)

2020-01-31 00:00:00

Mageia: Security Advisory (MGASA-2020-0117)

2022-01-28 00:00:00

SUSE: Security Advisory (SUSE-SU-2021:2145-1)

2021-06-24 00:00:00

prion

Heap overflow

2020-01-21 23:15:00

oraclelinux

libsolv security, bug fix, and enhancement update

2020-11-10 00:00:00

redhat

(RHSA-2020:4508) Moderate: libsolv security, bug fix, and enhancement update

2020-11-03 12:11:02

(RHSA-2021:2021) Moderate: Release of OpenShift Serverless 1.10.2 security update

2021-05-19 02:03:59

(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0

2021-01-14 13:24:22

cve

CVE-2019-20387

2020-01-21 23:15:13

debian

[SECURITY] [DLA 2088-1] libsolv security update

2020-01-30 18:03:13

veracode

Buffer Over-read

2020-01-22 13:43:07

mageia

Updated libsolv packages fix security vulnerability

2020-03-06 19:13:58

debiancve

CVE-2019-20387

2020-01-21 23:15:13

osv

CVE-2019-20387

2020-01-21 23:15:13

libsolv - security update

2020-01-30 00:00:00

almalinux

Moderate: libsolv security, bug fix, and enhancement update

2020-11-03 12:11:02

rosalinux

Advisory ROSA-SA-2021-1891

2021-07-02 17:16:49

ibm

Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities

2021-12-03 18:52:37

Security Bulletin: Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

2023-03-08 18:05:21

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

EPSS

0.002

Percentile

55.8%

JSON

Related for RH:CVE-2019-20387