CVE-2019-25085
CVSS V2 None
CVSS V3 None
Description
A vulnerability was found in GNOME gvdb. It has been classified as critical. This affects the function gvdb_table_write_contents_async of the file gvdb-builder.c. The manipulation leads to use after free. It is possible to initiate the attack remotely. The name of the patch is d83587b2a364eb9a9a53be7e6a708074e252de14. It is recommended to apply a patch to fix this issue. The identifier VDB-216789 was assigned to this vulnerability.
Overview
- CVE ID
- CVE-2019-25085
- Assigner
- cna@vuldb.com
- Vulnerability Status
- Analyzed
- Published Version
- 2022-12-26T07:15:09
- Last Modified Date
- 2023-01-05T03:19:37
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| cpe:2.3:a:gnome:gvariant_database:*:*:*:*:*:*:*:* | 1 | OR | 2019-06-27 |
References
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2019-25085 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-25085 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-12-26 07:16:16 | Added to TrackCVE | |||
| 2022-12-26 07:16:16 | Weakness Enumeration | new | ||
| 2022-12-27 14:15:54 | 2022-12-27T13:48:11 | CVE Modified Date | updated | |
| 2022-12-27 14:15:54 | Received | Awaiting Analysis | Vulnerability Status | updated |
| 2022-12-27 14:15:56 | CVSS V3 information | new | ||
| 2022-12-30 19:14:21 | Awaiting Analysis | Undergoing Analysis | Vulnerability Status | updated |
| 2022-12-30 19:14:23 | CVSS V3 information | new | ||
| 2023-01-05 04:14:53 | 2023-01-05T03:19:37 | CVE Modified Date | updated | |
| 2023-01-05 04:14:53 | Undergoing Analysis | Analyzed | Vulnerability Status | updated |
| 2023-01-05 04:14:54 | CPE Information | updated | ||
| 2023-01-05 04:14:54 | CVSS V3 information | new |