Information on source package yara

Available versions

ReleaseVersion
jessie3.1.0-2+deb8u1
stretch3.5.0+dfsg-9
buster3.7.0-3
sid3.7.0-4

Open issues

BugjessiestretchbustersidDescription
CVE-2017-9465vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedThe yr_arena_write_data function in YARA 3.6.1 allows remote attackers ...
CVE-2017-9438vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedlibyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers ...
CVE-2017-9304vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedlibyara/re.c in the regexp module in YARA 3.5.0 allows remote attackers ...
CVE-2017-8929vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedThe sized_string_cmp function in libyara/sizedstr.c in YARA 3.5.0 ...
CVE-2017-8294vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedlibyara/re.c in the regex component in YARA 3.5.0 allows remote ...
CVE-2017-11328vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedHeap buffer overflow in the yr_object_array_set_item() function in ...

Resolved issues

BugDescription
CVE-2017-5924libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a ...
CVE-2017-5923libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a ...
CVE-2016-10211libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a ...
CVE-2016-10210libyara/lexer.l in YARA 3.5.0 allows remote attackers to cause a denial ...

Search for package or bug name: Reporting problems