Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2019-6247

Опубликовано: 13 янв. 2019
Источник: debian
EPSS Низкий

Описание

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_aa_solid function, the blend_hline function is called repeatedly multiple times. blend_hline is equivalent to a loop containing write operations. Each call writes a piece of heap data, and multiple calls overwrite the data in the heap.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
svgppunfixedpackage

Примечания

  • https://github.com/svgpp/svgpp/issues/70

  • Issue only in src:svgpp which does not call the AGG-API in correct way.

  • No security impact, only used to build examples, see #921097

EPSS

Процентиль: 83%
0.01849
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2019-6247

CVSS3: 8.8
ubuntu
около 7 лет назад

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_aa_solid function, the blend_hline function is called repeatedly multiple times. blend_hline is equivalent to a loop containing write operations. Each call writes a piece of heap data, and multiple calls overwrite the data in the heap.

nvd логотип

CVE-2019-6247

CVSS3: 8.8
nvd
около 7 лет назад

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_aa_solid function, the blend_hline function is called repeatedly multiple times. blend_hline is equivalent to a loop containing write operations. Each call writes a piece of heap data, and multiple calls overwrite the data in the heap.

github логотип

GHSA-xmr8-c87m-jhw3

CVSS3: 8.8
github
больше 3 лет назад

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. A heap-based buffer overflow bug in svgpp_agg_render may lead to code execution. In the render_scanlines_aa_solid function, the blend_hline function is called repeatedly multiple times. blend_hline is equivalent to a loop containing write operations. Each call writes a piece of heap data, and multiple calls overwrite the data in the heap.

EPSS

Процентиль: 83%
0.01849
Низкий