GHSA-4hqm-7w7w-5w4r

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.

Ссылки

EPSS

Процентиль: 76%

0.00988

Низкий

8.8 High

CVSS3

CVE ID

CVE-2019-17534

Дефекты

CWE-416

Связанные уязвимости

CVE-2019-17534

CVSS3: 8.8

ubuntu

больше 6 лет назад

vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.

CVE-2019-17534

CVSS3: 8.8

nvd

больше 6 лет назад

vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.

CVE-2019-17534

CVSS3: 8.8

debian

больше 6 лет назад

vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips befor ...

EPSS

Процентиль: 76%

0.00988

Низкий

8.8 High

CVSS3

CVE ID

CVE-2019-17534

Дефекты

CWE-416