VDB

GCVE-110-MAGEIA-2014-30

GCVE-110-MAGEIA-2014-30
Advisory Published
Vulnetix · Advisory published January 31, 2014
The MHD_http_unescape function in libmicrohttpd before 0.9.32 might allow remote attackers to obtain sensitive information or cause a denial of service (crash) via unspecified vectors that trigger an out-of-bounds read (CVE-2013-7038). Stack-based buffer overflow in the MHD_digest_auth_check function in libmicrohttpd before 0.9.32, when MHD_OPTION_CONNECTION_MEMORY_LIMIT is set to a large value, allows remote attackers to cause a denial of service (crash) or possibly execute arbitrary code via a long URI in an authentication header (CVE-2013-7039).

Affected Products

VendorProductVersionsPlatforms
Mageialibmicrohttpd0.9.33-1.mga3 (unaffected), 0 (affected), 0 (affected), 0.9.33-1.mga3 (unaffected)
Mageiapackagekit0 (affected), 0.8.14-3.1.mga4 (unaffected)

Browse GCVE Records

73,118 records in the GCVE database · Updated July 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›