CVE-2021-30498

Опубликовано: 26 мая 2021

Источник: nvd

CVSS3: 7.8

CVSS2: 6.8

EPSS Низкий

Описание

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential consequences.

Ссылки

https://bugzilla.redhat.com/show_bug.cgi?id=1948675
Issue Tracking
Third Party Advisory
https://github.com/cacalabs/libcaca/issues/53
Exploit
Issue Tracking
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00004.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6WFGYICNTMNDNMDDUV4G2RYFB5HNJCOV/
Mailing List
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PC7EGOEQ5C4OD66ZUJJIIYEXBTZOCMZX/
Mailing List
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZSBCRN6EGQJUVOSD4OEEQ6XORHEM2CUL/
Mailing List
Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1948675
Issue Tracking
Third Party Advisory
https://github.com/cacalabs/libcaca/issues/53
Exploit
Issue Tracking
Third Party Advisory
https://lists.debian.org/debian-lts-announce/2024/04/msg00004.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6WFGYICNTMNDNMDDUV4G2RYFB5HNJCOV/
Mailing List
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PC7EGOEQ5C4OD66ZUJJIIYEXBTZOCMZX/
Mailing List
Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZSBCRN6EGQJUVOSD4OEEQ6XORHEM2CUL/
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:libcaca_project:libcaca:0.99:beta14:*:*:*:*:*:*

cpe:2.3:a:libcaca_project:libcaca:0.99:beta15:*:*:*:*:*:*

cpe:2.3:a:libcaca_project:libcaca:0.99:beta16:*:*:*:*:*:*

cpe:2.3:a:libcaca_project:libcaca:0.99:beta17:*:*:*:*:*:*

cpe:2.3:a:libcaca_project:libcaca:0.99:beta18:*:*:*:*:*:*

cpe:2.3:a:libcaca_project:libcaca:0.99:beta19:*:*:*:*:*:*

Конфигурация 2

Одно из

cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:35:*:*:*:*:*:*:*

cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

EPSS

Процентиль: 31%

0.00115

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787

Связанные уязвимости

CVE-2021-30498

CVSS3: 7.8

ubuntu

около 4 лет назад

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential consequences.

CVE-2021-30498

CVSS3: 7.8

debian

около 4 лет назад

A flaw was found in libcaca. A heap buffer overflow in export.c in fun ...

GHSA-hg8v-gh24-gpf4

CVSS3: 9.8

github

около 3 лет назад

A flaw was found in libcaca. A heap buffer overflow in export.c in function export_tga might lead to memory corruption and other potential consequences.

BDU:2021-05510

CVSS3: 9.8

fstec

около 4 лет назад

Уязвимость файла export.c в функции export_tga графической библиотеки libcaca для преобразования изображения в ASCII ART, позволяющая нарушителю вызвать повреждение памяти

openSUSE-SU-2022:0769-1

suse-cvrf

больше 3 лет назад

Security update for libcaca

EPSS

Процентиль: 31%

0.00115

Низкий

7.8 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-787