Hivex Red Hat Hivex

Do you want an email whenever new security vulnerabilities are reported in Red Hat Hivex?

Recent Red Hat Hivex Security Advisories

Advisory Title Published
RHSA-2021:2318 (RHSA-2021:2318) Moderate: hivex security update June 9, 2021

By the Year

In 2022 there have been 0 vulnerabilities in Red Hat Hivex . Last year Hivex had 2 security vulnerabilities published. Right now, Hivex is on track to have less security vulnerabilities in 2022 than it did last year.

Year Vulnerabilities Average Score
2022 0 0.00
2021 2 4.85
2020 0 0.00
2019 0 0.00
2018 0 0.00

It may take a day or so for new Hivex vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.

Recent Red Hat Hivex Security Vulnerabilities

A flaw was found in the hivex library

CVE-2021-3622 4.3 - Medium - December 23, 2021

A flaw was found in the hivex library. This flaw allows an attacker to input a specially crafted Windows Registry (hive) file, which would cause hivex to recursively call the _get_children() function, leading to a stack overflow. The highest threat from this vulnerability is to system availability.

Resource Exhaustion

A flaw was found in the hivex library in versions before 1.3.20

CVE-2021-3504 5.4 - Medium - May 11, 2021

A flaw was found in the hivex library in versions before 1.3.20. It is caused due to a lack of bounds check within the hivex_open function. An attacker could input a specially crafted Windows Registry (hive) file which would cause hivex to read memory beyond its normal bounds or cause the program to crash. The highest threat from this vulnerability is to system availability.

Out-of-bounds Read

Stay on top of Security Vulnerabilities

Want an email whenever new vulnerabilities are published for Red Hat Hivex or by Red Hat? Click the Watch button to subscribe.

Red Hat
Vendor

Red Hat Hivex
Product

subscribe