CVE-2015-7802

Опубликовано: 20 апр. 2016

Источник: nvd

CVSS3: 5.5

CVSS2: 4.3

EPSS Низкий

Описание

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:optipng_project:optipng:0.7.5:*:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

EPSS

Процентиль: 61%

0.00418

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-119

Связанные уязвимости

CVE-2015-7802

CVSS3: 5.5

ubuntu

почти 10 лет назад

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

CVE-2015-7802

redhat

больше 10 лет назад

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

CVE-2015-7802

CVSS3: 5.5

debian

почти 10 лет назад

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote a ...

GHSA-3c85-4h37-m8ww

CVSS3: 5.5

github

больше 3 лет назад

gifread.c in gif2png, as used in OptiPNG before 0.7.6, allows remote attackers to cause a denial of service (uninitialized memory read) via a crafted GIF file.

EPSS

Процентиль: 61%

0.00418

Низкий

5.5 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-119