CVE-2021-46019

Name
CVE-2021-46019
Description
An untrusted pointer dereference in rec_db_destroy() at rec-db.c of GNU Recutils v1.8.90 can lead to a segmentation fault or application crash.
NVD Severity
medium
Other trackers
Mailing lists
Exploits
Forges
GitHub (code, issues), Aports (code, issues)

References

Type URI
MISC https://lists.gnu.org/archive/html/bug-recutils/2021-12/msg00009.html
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/VRSXSN2XF6PX74WDYVV26TQMYIFAEQ3T/
FEDORA https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/TDVOFC3HTBG7DF2PZTEXRMG4CV2F55UF/

Match rules

CPE URI Source package Min version Max version
cpe:2.3:a:gnu:recutils:1.8.90:*:*:*:*:*:*:* recutils == None == 1.8.90

Vulnerable and fixed packages

Source package Branch Version Maintainer Status
recutils 3.16-community 1.9-r0 Will Sinatra <wpsinatra@gmail.com> fixed
recutils 3.17-community 1.9-r0 Will Sinatra <wpsinatra@gmail.com> fixed