The Sleuth Kit 2.10

CPE Details

The Sleuth Kit 2.10
sleuthkit
the_sleuth_kit
2.10
2018-07-12
13h03 +00:00
2018-07-12
13h03 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sleuthkit:the_sleuth_kit:2.10:*:*:*:*:*:*:*

Informations

Vendor

sleuthkit

Product

the_sleuth_kit

Version

2.10

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-10232 2020-03-08 22h52 +00:00 In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
9.8
Critical
CVE-2020-10233 2020-03-08 22h52 +00:00 In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c.
9.1
Critical
CVE-2019-1010065 2019-07-18 14h05 +00:00 The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash in tsk/fs/hfs_dent.c:237. The component is: Overflow in fls tool used on HFS image. Bug is in tsk/fs/hfs.c file in function hfs_cat_traverse() in lines: 952, 1062. The attack vector is: Victim must open a crafted HFS filesystem image.
6.5
Medium
CVE-2018-19497 2018-11-29 22h00 +00:00 In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in tsk/fs/hfs_dent.c).
6.5
Medium