Security Advisory

CVE-2019-19648

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-12-09 00:37:00

Last updated 2024-08-05 02:25:12

Assigner mitre

State PUBLISHED

Description

In the macho_parse_file functionality in macho/macho.c of YARA 3.11.0, command_size may be inconsistent with the real size. A specially crafted MachO file can cause an out-of-bounds memory access, resulting in Denial of Service (application crash) or potential code execution.

← Browse all CVEs View on cve.org ↗