Описание
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.
Ссылки
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
- Mailing ListThird Party Advisory
- Issue TrackingThird Party Advisory
- Issue TrackingThird Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:xv_project:xv:3.10a:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:o:opensuse:leap:42.3:*:*:*:*:*:*:*
EPSS
Процентиль: 78%
0.01094
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787
Связанные уязвимости
CVSS3: 9.8
debian
почти 8 лет назад
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when d ...
CVSS3: 9.8
github
больше 3 лет назад
xvpng.c in xv 3.10a has memory corruption (out-of-bounds write) when decoding PNG comment fields, leading to crashes or potentially code execution, because it uses an incorrect length value.
EPSS
Процентиль: 78%
0.01094
Низкий
9.8 Critical
CVSS3
7.5 High
CVSS2
Дефекты
CWE-787