CyberSec.Space Logo
Back to CVE Browser

CVE-2019-19907

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1010%
EPSS Percentile37.83th
PublishedDec 19, 2019
Last ModifiedNov 21, 2024

Vulnerability Description

HrAddFBBlock in libfreebusy/freebusyutil.cpp in Kopano Groupware Core before 8.7.7 allows out-of-bounds access, as demonstrated by mishandling of an array copy during parsing of ICal data.

Affected Platforms (CPE)

πŸ“¦
Kopano

Groupware Core

< 8.7.7

References & Advisories

πŸ”— https://lists.debian.org/debian-lts-announce/2023/03/msg00006.html
πŸ”— https://stash.kopano.io/projects/KC/repos/kopanocore/browse/RELNOTES.txt
πŸ”— https://stash.kopano.io/projects/KC/repos/kopanocore/commits/4e02b420fff
πŸ”— https://lists.debian.org/debian-lts-announce/2023/03/msg00006.html
πŸ”— https://stash.kopano.io/projects/KC/repos/kopanocore/browse/RELNOTES.txt
πŸ”— https://stash.kopano.io/projects/KC/repos/kopanocore/commits/4e02b420fff

Related Vulnerabilities

CVE-2021-289947.5

kopano-ical (formerly zarafa-ical) in Kopano Groupware Core through 8.7.16, 9.x through 9.1.0, 10.x through 10.0.7, and 11.x throu...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...