Опубликовано: 13 окт. 2019
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 6.8
CVSS3: 8.8
Описание
vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needs-triage |
| devel | not-affected | 8.8.3-3 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | not-affected | code not present |
| esm-apps/focal | not-affected | 8.8.3-3 |
| esm-apps/jammy | not-affected | 8.8.3-3 |
| esm-apps/xenial | not-affected | code not present |
| esm-infra-legacy/trusty | DNE | |
| focal | not-affected | 8.8.3-3 |
Показывать по
10
EPSS
Процентиль: 76%
0.00988
Низкий
6.8 Medium
CVSS2
8.8 High
CVSS3
Связанные уязвимости
CVSS3: 8.8
nvd
больше 6 лет назад
vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.
CVSS3: 8.8
debian
больше 6 лет назад
vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips befor ...
CVSS3: 8.8
github
больше 3 лет назад
vips_foreign_load_gif_scan_image in foreign/gifload.c in libvips before 8.8.2 tries to access a color map before a DGifGetImageDesc call, leading to a use-after-free.
EPSS
Процентиль: 76%
0.00988
Низкий
6.8 Medium
CVSS2
8.8 High
CVSS3