Описание
LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via a crafted image file.
Ссылки
- http://packetstormsecurity.com/files/134198/Samsung-Galaxy-S6-LibQjpeg-DoIntegralUpsample-Crash.htmlThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/134198/Samsung-Galaxy-S6-LibQjpeg-DoIntegralUpsample-Crash.htmlThird Party AdvisoryVDB Entry
- Third Party AdvisoryVDB Entry
- Third Party Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одновременно
Одно из
cpe:2.3:o:samsung:samsung_mobile:5.0:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:5.0.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:5.0.2:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:5.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:5.1.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:6.0:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:6.0.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:7.0:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:7.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:7.1.1:*:*:*:*:*:*:*
cpe:2.3:o:samsung:samsung_mobile:7.1.2:*:*:*:*:*:*:*
cpe:2.3:h:samsung:galaxy_s6:-:*:*:*:*:*:*:*
EPSS
Процентиль: 91%
0.07163
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-119
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
LibQJpeg in the Samsung Galaxy S6 before the October 2015 MR allows remote attackers to cause a denial of service (memory corruption and SIGSEGV) via a crafted image file.
EPSS
Процентиль: 91%
0.07163
Низкий
6.5 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-119