DEBIAN-CVE-2004-0414
- Source
- https://security-tracker.debian.org/tracker/CVE-2004-0414
- Import Source
- https://storage.googleapis.com/debian-osv/debian-cve-osv/DEBIAN-CVE-2004-0414.json
- JSON Data
- https://api.osv.dev/v1/vulns/DEBIAN-CVE-2004-0414
- Upstream
- Published
- 2004-08-06T04:00:00Z
- Modified
- 2025-11-19T02:04:37.697550Z
- Summary
- [none]
- Details
-
CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbitrary code execution.
- References
Affected packages
Debian:11 / cvs
Package
- Name
- cvs
- Purl
- pkg:deb/debian/cvs?arch=source
Debian:12 / cvs
Package
- Name
- cvs
- Purl
- pkg:deb/debian/cvs?arch=source
Debian:13 / cvs
Package
- Name
- cvs
- Purl
- pkg:deb/debian/cvs?arch=source
Debian:14 / cvs
Package
- Name
- cvs
- Purl
- pkg:deb/debian/cvs?arch=source