CVE Vulnerability
CVE-2019-9904
An issue was discovered in libcdtdttree.c in libcdt.a in graphviz 2.40.1. Stack consumption occurs because of recursive agclose calls in libcgraphgraph.c in libcgraph.a, related to agfstsubg in libcgraphsubg.c.
References
| Link | Resource |
|---|---|
| https://research.loginsoft.com/bugs/stack-buffer-overflow-in-function-agclose-graphviz/ | Exploit Third Party Advisory |
| https://gitlab.com/graphviz/graphviz/issues/1512 | Exploit Issue Tracking |
| https://security.gentoo.org/glsa/202107-04 | Third Party Advisory |
Configurations
Configuration 1
|
Information
Published : 2019-03-21 06:29
Updated : 2023-02-01 08:28
NVD link : CVE-2019-9904
Mitre link : CVE-2019-9904
Products Affected
No products.
CWE
CWE-674
Uncontrolled Recursion