Information on source package yara

Available versions

ReleaseVersion
jessie3.1.0-2+deb8u1
stretch3.5.0+dfsg-9
buster3.9.0-1
bullseye3.9.0-1
sid3.10.0-2

Open issues

BugjessiestretchbusterbullseyesidDescription
CVE-2018-19976vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn YARA 3.8.1, bytecode in a specially crafted compiled rule is expose ...
CVE-2018-19975vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn YARA 3.8.1, bytecode in a specially crafted compiled rule can read ...
CVE-2018-19974vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn YARA 3.8.1, bytecode in a specially crafted compiled rule can read ...
CVE-2018-12035vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn YARA 3.7.1 and prior, parsing a specially crafted compiled rule fil ...
CVE-2018-12034vulnerable (no DSA)vulnerable (no DSA)fixedfixedfixedIn YARA 3.7.1 and prior, parsing a specially crafted compiled rule fil ...
CVE-2017-9465vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedThe yr_arena_write_data function in YARA 3.6.1 allows remote attackers ...
CVE-2017-9438vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedlibyara/re.c in the regexp module in YARA 3.5.0 allows remote attacker ...
CVE-2017-9304vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedlibyara/re.c in the regexp module in YARA 3.5.0 allows remote attacker ...
CVE-2017-8929vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedThe sized_string_cmp function in libyara/sizedstr.c in YARA 3.5.0 allo ...
CVE-2017-8294vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedlibyara/re.c in the regex component in YARA 3.5.0 allows remote attack ...
CVE-2017-11328vulnerable (no DSA, ignored)vulnerable (no DSA, ignored)fixedfixedfixedHeap buffer overflow in the yr_object_array_set_item() function in obj ...

Resolved issues

BugDescription
CVE-2019-5020An exploitable denial of service vulnerability exists in the object lo ...
CVE-2017-5924libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a den ...
CVE-2017-5923libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a den ...
CVE-2016-10211libyara/grammar.y in YARA 3.5.0 allows remote attackers to cause a den ...
CVE-2016-10210libyara/lexer.l in YARA 3.5.0 allows remote attackers to cause a denia ...

Search for package or bug name: Reporting problems