Описание
CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| cimg | fixed | 2.8.4+dfsg-1 | package | |
| cimg | no-dsa | buster | package | |
| cimg | no-dsa | stretch | package | |
| cimg | not-affected | jessie | package |
Примечания
https://github.com/dtschump/CImg/commit/ac8003393569aba51048c9d67e1491559877b1d1
Связанные уязвимости
CVSS3: 8.8
ubuntu
больше 6 лет назад
CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.
CVSS3: 8.8
nvd
больше 6 лет назад
CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.
CVSS3: 8.8
github
больше 3 лет назад
CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.