Описание
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | not-affected | 3.430-2 |
| cosmic | not-affected | 3.430-2 |
| devel | not-affected | 3.430-2 |
| disco | not-affected | 3.430-2 |
| eoan | not-affected | 3.430-2 |
| esm-apps/bionic | not-affected | 3.430-2 |
| esm-apps/focal | not-affected | 3.430-2 |
| esm-apps/jammy | not-affected | 3.430-2 |
| esm-apps/noble | not-affected | 3.430-2 |
Показывать по
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially cra ...
In the ffgphd and ffgtkn functions in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.
EPSS
6.8 Medium
CVSS2
8.8 High
CVSS3