Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog
Консоль
Π›ΠΎΠ³ΠΎΡ‚ΠΈΠΏ exploitDog

exploitDog

redhat Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2018-10112

ΠžΠΏΡƒΠ±Π»ΠΈΠΊΠΎΠ²Π°Π½ΠΎ: 14 Π°ΠΏΡ€. 2018
Π˜ΡΡ‚ΠΎΡ‡Π½ΠΈΠΊ: redhat
CVSS3: 7.8
EPSS Низкий

ОписаниС

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the babl_format_get_bytes_per_pixel function in babl-format.c in babl 0.1.46.

Π—Π°Ρ‚Ρ€ΠΎΠ½ΡƒΡ‚Ρ‹Π΅ ΠΏΠ°ΠΊΠ΅Ρ‚Ρ‹

ΠŸΠ»Π°Ρ‚Ρ„ΠΎΡ€ΠΌΠ°ΠŸΠ°ΠΊΠ΅Ρ‚Π‘ΠΎΡΡ‚ΠΎΡΠ½ΠΈΠ΅Π Π΅ΠΊΠΎΠΌΠ΅Π½Π΄Π°Ρ†ΠΈΡΠ Π΅Π»ΠΈΠ·
Red Hat Enterprise Linux 6geglNot affected
Red Hat Enterprise Linux 7geglNot affected
Red Hat Enterprise Linux 8geglWill not fix
Red Hat Enterprise Linux 8gegl04Not affected

ΠŸΠΎΠΊΠ°Π·Ρ‹Π²Π°Ρ‚ΡŒ ΠΏΠΎ

Бсылки Π½Π° источники

Π”ΠΎΠΏΠΎΠ»Π½ΠΈΡ‚Π΅Π»ΡŒΠ½Π°Ρ информация

Бтатус:

Moderate
Π”Π΅Ρ„Π΅ΠΊΡ‚:
CWE-787
https://bugzilla.redhat.com/show_bug.cgi?id=1570188gegl: write access violation in gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 59%
0.00379
Низкий

7.8 High

CVSS3

БвязанныС уязвимости

ubuntu Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2018-10112

CVSS3: 8.8
ubuntu
ΠΏΠΎΡ‡Ρ‚ΠΈ 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the babl_format_get_bytes_per_pixel function in babl-format.c in babl 0.1.46.

nvd Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2018-10112

CVSS3: 8.8
nvd
ΠΏΠΎΡ‡Ρ‚ΠΈ 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the babl_format_get_bytes_per_pixel function in babl-format.c in babl 0.1.46.

debian Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

CVE-2018-10112

CVSS3: 8.8
debian
ΠΏΠΎΡ‡Ρ‚ΠΈ 8 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_ ...

github Π»ΠΎΠ³ΠΎΡ‚ΠΈΠΏ

GHSA-x849-69h5-g6m5

CVSS3: 8.8
github
большС 3 Π»Π΅Ρ‚ Π½Π°Π·Π°Π΄

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the babl_format_get_bytes_per_pixel function in babl-format.c in babl 0.1.46.

EPSS

ΠŸΡ€ΠΎΡ†Π΅Π½Ρ‚ΠΈΠ»ΡŒ: 59%
0.00379
Низкий

7.8 High

CVSS3

Π£ΡΠ·Π²ΠΈΠΌΠΎΡΡ‚ΡŒ CVE-2018-10112