Vulnerabilities > Clusterlabs > Libqb

DATE CVE VULNERABILITY TITLE RISK
2023-08-08 CVE-2023-39976 Classic Buffer Overflow vulnerability in Clusterlabs Libqb
log_blackbox.c in libqb before 2.0.8 allows a buffer overflow via long log messages because the header size is not considered.
network
low complexity
clusterlabs CWE-120
critical
9.8
2019-06-07 CVE-2019-12779 Link Following vulnerability in Clusterlabs Libqb
libqb before 1.0.5 allows local users to overwrite arbitrary files via a symlink attack, because it uses predictable filenames (under /dev/shm and /tmp) without O_EXCL.
local
low complexity
clusterlabs CWE-59
6.6