Safety CI > MobSF/Mobile-Security-Framework-MobSF

docker_dynamic_analysis

2 years, 1 month ago

9d042979

MobSF Android Docker Support

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-17

2 years, 1 month ago

a3a9f8ba

Update frida from 15.2.2 to 16.1.3

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-17

2 years, 1 month ago

4ba53e33

Update quark-engine from 23.5.1 to 23.6.1

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-10

2 years, 2 months ago

1d9ccfc1

Update frida from 15.2.2 to 16.1.1

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-10

2 years, 2 months ago

99024bdd

Update quark-engine from 23.5.1 to 23.6.1

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-03

2 years, 2 months ago

0a61d2b7

Update frida from 15.2.2 to 16.1.1

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-07-03

2 years, 2 months ago

0cea431b

Update quark-engine from 23.5.1 to 23.6.1

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

pyup-scheduled-update-2023-06-26

2 years, 2 months ago

aa02e6cf

Update frida from 15.2.2 to 16.1.0

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ios_dyn

2 years, 2 months ago

73b4db60

Merge branch 'master' into ios_dyn

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

master

2 years, 2 months ago

dc0dc273

HOTFIX: Feature updates and Bug Fixes (#2197) * OFAC, jquery bump, tox fix * AAR handle multiple a

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ftrjune

2 years, 2 months ago

d858a086

Update tox.ini

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ftrjune

2 years, 2 months ago

ff7b1c44

fix lint error

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ftrjune

2 years, 2 months ago

382ec1f6

bump minor

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ftrjune

2 years, 2 months ago

cb286c39

Fix tox errors

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

ftrjune

2 years, 2 months ago

30821b6a

AAR handle multiple application tags

lief 0.13.2 has known security vulnerabilities.

Package	Installed	Affected	Info
lief	0.13.2	<0.15.0	show Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.

Package

Installed

Affected

Info

lief

0.13.2

<0.15.0

show

Affected versions of the lief package are vulnerable to Information Disclosure due to the use of an uninitialized variable in the machd_reader.c component’s name parameter. The machd_reader.c component accepts the name parameter without proper initialization, allowing leakage of potentially sensitive memory contents. A local attacker can exploit this by invoking the machd_reader functionality with a crafted name parameter, causing the LIEF package to disclose unintended information from process memory.