The Sleuth Kit 3.1.0

CPE Details

The Sleuth Kit 3.1.0
sleuthkit
the_sleuth_kit
3.1.0
2019-07-19
12h41 +00:00
2019-07-19
12h41 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:sleuthkit:the_sleuth_kit:3.1.0:-:*:*:*:*:*:*

Informations

Vendor

sleuthkit

Product

the_sleuth_kit

Version

3.1.0

Update

-

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-10232 2020-03-08 22h52 +00:00 In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a stack buffer overflow vulnerability in the YAFFS file timestamp parsing logic in yaffsfs_istat() in fs/yaffs.c.
9.8
Critical
CVE-2020-10233 2020-03-08 22h52 +00:00 In version 4.8.0 and earlier of The Sleuth Kit (TSK), there is a heap-based buffer over-read in ntfs_dinode_lookup in fs/ntfs.c.
9.1
Critical
CVE-2019-1010065 2019-07-18 14h05 +00:00 The Sleuth Kit 4.6.0 and earlier is affected by: Integer Overflow. The impact is: Opening crafted disk image triggers crash in tsk/fs/hfs_dent.c:237. The component is: Overflow in fls tool used on HFS image. Bug is in tsk/fs/hfs.c file in function hfs_cat_traverse() in lines: 952, 1062. The attack vector is: Victim must open a crafted HFS filesystem image.
6.5
Medium
CVE-2018-19497 2018-11-29 22h00 +00:00 In The Sleuth Kit (TSK) through 4.6.4, hfs_cat_traverse in tsk/fs/hfs.c does not properly determine when a key length is too large, which allows attackers to cause a denial of service (SEGV on unknown address with READ memory access in a tsk_getu16 call in hfs_dir_open_meta_cb in tsk/fs/hfs_dent.c).
6.5
Medium