AVG-2117 log

Package keystone
Status Vulnerable
Severity Medium
Type arbitrary code execution
Affected 0.9.2-1
Fixed Unknown
Current 0.9.2-1 [community]
Ticket Create
Created Thu Jul 1 09:27:36 2021
Issue Severity Remote Type Description
CVE-2020-36405 Medium Yes Arbitrary code execution
Keystone Engine 0.9.2 has a use-after-free in llvm_ks::X86Operand::getToken.
CVE-2020-36404 Medium Yes Arbitrary code execution
Keystone Engine 0.9.2 has an invalid free in llvm_ks::SmallVectorImpl<llvm_ks::MCFixup>::~SmallVectorImpl.