nlist.c in libbsd before 0.10.0 has an out-of-bounds read during a comparison for a symbol name from the string table (strtab).
[
{
"signature_type": "Line",
"digest": {
"line_hashes": [
"196345775308584474326548203501370608928",
"117179312383696696732209002964919880424",
"30096019812250696087892895259766991307",
"67648858372622382913984756949145775050",
"246870043550956115314895576834314496114",
"308007934934988426552422046358506278415",
"8420698635247680829431571837603296816",
"208920325444813761589317409971170606869",
"234432775420817522155667897046249299351",
"72935726870559338984664214232075252684",
"136385293728070607369190962627516719091",
"213708016270590239438244198869379749218"
],
"threshold": 0.9
},
"source": "https://gitlab.freedesktop.org/libbsd/libbsd@9d917aad37778a9f4a96ba358415f077f3f36f3b",
"deprecated": false,
"id": "CVE-2019-20367-42b4aa86",
"signature_version": "v1",
"target": {
"file": "src/nlist.c"
}
},
{
"signature_type": "Function",
"digest": {
"length": 2396.0,
"function_hash": "136690924035898766300959581100126504118"
},
"source": "https://gitlab.freedesktop.org/libbsd/libbsd@9d917aad37778a9f4a96ba358415f077f3f36f3b",
"deprecated": false,
"id": "CVE-2019-20367-fac8a904",
"signature_version": "v1",
"target": {
"function": "__fdnlist",
"file": "src/nlist.c"
}
}
]