CVE-2014-0978CVE-2014-0978

Affected configuration(s):

cpe:/a:graphviz:graphviz:2.34.0

Date published: 2014-01-10T12:55:03.237-05:00

Date last modified: 2017-08-28T21:34:23.217-04:00

CVSS Score: 9.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://seclists.org/oss-sec/2014/q1/28

Summary: Stack-based buffer overflow in the yyerror function in lib/cgraph/scan.l in Graphviz 2.34.0 allows remote attackers to have unspecified impact via a long line in a dot file.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *