CVE-2017-1000229

Опубликовано: 17 нояб. 2017

Источник: debian

EPSS Низкий

Описание

Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.

Пакет	Статус	Версия исправления	Релиз	Тип
optipng	fixed	0.7.6-1.1		package

https://sourceforge.net/p/optipng/bugs/65/
Proposed patch: https://sourceforge.net/p/optipng/bugs/_discuss/thread/2a56b3aa/f6bb/attachment/0001-Prevent-integer-overflow-bug-65-CVE-2017-1000229.patch

EPSS

Процентиль: 64%

0.00473

Низкий

CVE-2017-1000229

CVSS3: 7.8

ubuntu

около 8 лет назад

Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.

CVE-2017-1000229

CVSS3: 3.3

redhat

около 8 лет назад

Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.

CVE-2017-1000229

CVSS3: 7.8

nvd

около 8 лет назад

Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.

GHSA-jv9j-wgx3-2884

CVSS3: 7.8

github

больше 3 лет назад

Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an attacker to remotely execute code or cause denial of service.

openSUSE-SU-2017:3162-1

suse-cvrf

около 8 лет назад

Security update for optipng

EPSS

Процентиль: 64%

0.00473

Низкий