| Bug | jessie | stretch | buster | bullseye | bookworm | trixie | sid | Description |
|---|
| CVE-2021-45429 | vulnerable | vulnerable (no DSA) | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | A Buffer Overflow vulnerablity exists in VirusTotal YARA git commit: 6 ... |
| CVE-2021-3402 | vulnerable | vulnerable (no DSA, postponed) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | An integer overflow and several buffer overflow reads in libyara/modul ... |
| CVE-2018-19976 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In YARA 3.8.1, bytecode in a specially crafted compiled rule is expose ... |
| CVE-2018-19975 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In YARA 3.8.1, bytecode in a specially crafted compiled rule can read ... |
| CVE-2018-19974 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In YARA 3.8.1, bytecode in a specially crafted compiled rule can read ... |
| CVE-2018-12035 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In YARA 3.7.1 and prior, parsing a specially crafted compiled rule fil ... |
| CVE-2018-12034 | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | fixed | fixed | fixed | In YARA 3.7.1 and prior, parsing a specially crafted compiled rule fil ... |
| CVE-2017-11328 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | Heap buffer overflow in the yr_object_array_set_item() function in obj ... |
| CVE-2017-9465 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | The yr_arena_write_data function in YARA 3.6.1 allows remote attackers ... |
| CVE-2017-9438 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | libyara/re.c in the regexp module in YARA 3.5.0 allows remote attacker ... |
| CVE-2017-9304 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | libyara/re.c in the regexp module in YARA 3.5.0 allows remote attacker ... |
| CVE-2017-8929 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | The sized_string_cmp function in libyara/sizedstr.c in YARA 3.5.0 allo ... |
| CVE-2017-8294 | vulnerable (no DSA, ignored) | vulnerable (no DSA, ignored) | fixed | fixed | fixed | fixed | fixed | libyara/re.c in the regex component in YARA 3.5.0 allows remote attack ... |