Source: brandy Version: 1.20.1-1 Severity: important Tags: security upstream
Hi, The following vulnerabilities were published for brandy. CVE-2019-14665[0]: | Brandy 1.20.1 has a heap-based buffer overflow in define_array in | variables.c via crafted BASIC source code. CVE-2019-14663[1]: | Brandy 1.20.1 has a stack-based buffer overflow in fileio_openin in | fileio.c via crafted BASIC source code. CVE-2019-14662[2]: | Brandy 1.20.1 has a stack-based buffer overflow in fileio_openout in | fileio.c via crafted BASIC source code. If you fix the vulnerabilities please also make sure to include the CVE (Common Vulnerabilities & Exposures) ids in your changelog entry. For further information see: [0] https://security-tracker.debian.org/tracker/CVE-2019-14665 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14665 [1] https://security-tracker.debian.org/tracker/CVE-2019-14663 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14663 [2] https://security-tracker.debian.org/tracker/CVE-2019-14662 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-14662 Regards, Salvatore

