Описание
Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might allow user-assisted attackers to execute arbitrary code via a JPEG image with more than 3 output components, such as a CMYK or YCCK color space, which causes less memory to be allocated than required.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 0.8-5.1 |
| edgy | released | 0.8-5.1 |
| feisty | released | 0.8-5.1 |
| gutsy | released | 0.8-5.1 |
| hardy | released | 0.8-5.1 |
| intrepid | released | 0.8-5.1 |
| jaunty | released | 0.8-5.1 |
| karmic | released | 0.8-5.1 |
| upstream | needs-triage |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 5.9-2 |
| edgy | released | 5.9-2 |
| feisty | released | 5.9-2 |
| gutsy | released | 5.9-2 |
| hardy | released | 5.9-2 |
| intrepid | released | 5.9-2 |
| jaunty | released | 5.9-2 |
| karmic | released | 5.9-2 |
| upstream | needs-triage |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might allow user-assisted attackers to execute arbitrary code via a JPEG image with more than 3 output components, such as a CMYK or YCCK color space, which causes less memory to be allocated than required.
Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might ...
Heap-based buffer overflow in zgv before 5.8 and xzgv before 0.8 might allow user-assisted attackers to execute arbitrary code via a JPEG image with more than 3 output components, such as a CMYK or YCCK color space, which causes less memory to be allocated than required.
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
Уязвимости операционной системы Debian GNU/Linux, позволяющие удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
7.5 High
CVSS2