CVE-2018-11740

Priority
Description
An issue was discovered in libtskbase.a in The Sleuth Kit (TSK) from
release 4.0.2 through to 4.6.1. An out-of-bounds read of a memory region
was found in the function tsk_UTF16toUTF8 in tsk/base/tsk_unicode.c which
could be leveraged by an attacker to disclose information or manipulated to
read from unmapped memory causing a denial of service attack.
Package
Upstream:needed
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 LTS (Trusty Tahr):needed
Ubuntu 16.04 LTS (Xenial Xerus):needed
Ubuntu 18.04 LTS (Bionic Beaver):needed
Ubuntu 18.10 (Cosmic Cuttlefish):needed
Ubuntu 19.04 (Disco Dingo):needed
More Information

Updated: 2019-01-14 21:29:10 UTC (commit 51f9b73af244ba86b9321e46e526586c25a8e060)