Vulnerabilities > Reachable Assertion

DATE CVE VULNERABILITY TITLE RISK
2020-01-08 CVE-2020-6617 Reachable Assertion vulnerability in Nothings STB Truetype.H 1.22
stb stb_truetype.h through 1.22 has an assertion failure in stbtt__cff_int.
network
nothings CWE-617
6.8
2019-12-29 CVE-2019-20056 Reachable Assertion vulnerability in Nothings STB Image.H 2.23
stb_image.h (aka the stb image loader) 2.23, as used in libsixel and other products, has an assertion failure in stbi__shiftsigned.
network
nothings CWE-617
4.3
2019-11-26 CVE-2011-3596 Reachable Assertion vulnerability in multiple products
Polipo before 1.0.4.1 suffers from a DoD vulnerability via specially-crafted HTTP POST / PUT request.
network
low complexity
polipo-project debian CWE-617
5.0
2019-11-25 CVE-2012-5521 Reachable Assertion vulnerability in multiple products
quagga (ospf6d) 0.99.21 has a DoS flaw in the way the ospf6d daemon performs routes removal
low complexity
quagga debian redhat CWE-617
3.3
2019-11-13 CVE-2019-18844 Reachable Assertion vulnerability in Linux Acrn
The Device Model in ACRN before 2019w25.5-140000p relies on assert calls in devicemodel/hw/pci/core.c and devicemodel/include/pci_core.h (instead of other mechanisms for propagating error information or diagnostic information), which might allow attackers to cause a denial of service (assertion failure) within pci core.
network
low complexity
linux CWE-617
5.0
2019-10-30 CVE-2018-5742 Reachable Assertion vulnerability in ISC Bind 9.9.465/9.9.472
While backporting a feature for a newer branch of BIND9, RedHat introduced a path leading to an assertion failure in buffer.c:420.
network
low complexity
isc CWE-617
7.5
2019-10-30 CVE-2018-5735 Reachable Assertion vulnerability in Debian Linux 10.0/8.0/9.0
The Debian backport of the fix for CVE-2017-3137 leads to assertion failure in validator.c:1858; Affects Debian versions 9.9.5.dfsg-9+deb8u15; 9.9.5.dfsg-9+deb8u18; 9.10.3.dfsg.P4-12.3+deb9u5; 9.11.5.P4+dfsg-5.1 No ISC releases are affected.
network
low complexity
debian CWE-617
5.0
2019-10-17 CVE-2019-6476 Reachable Assertion vulnerability in ISC Bind
A defect in code added to support QNAME minimization can cause named to exit with an assertion failure if a forwarder returns a referral rather than resolving the query.
network
low complexity
isc CWE-617
7.5
2019-10-16 CVE-2019-6473 Reachable Assertion vulnerability in ICS KEA 1.6.0
An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process (kea-dhcp4), causing the server process to exit.
low complexity
ics CWE-617
3.3
2019-10-16 CVE-2019-6472 Reachable Assertion vulnerability in ISC KEA 1.4.0/1.5.0/1.6.0
A packet containing a malformed DUID can cause the Kea DHCPv6 server process (kea-dhcp6) to exit due to an assertion failure.
low complexity
isc CWE-617
3.3