CVE-2019-6245

Опубликовано: 13 янв. 2019

Источник: ubuntu

Приоритет: medium

CVSS2: 6.8

CVSS3: 8.8

Описание

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. In the function agg::cell_aa::not_equal, dx is assigned to (x2 - x1). If dx >= dx_limit, which is (16384 << poly_subpixel_shift), this function will call itself recursively. There can be a situation where (x2 - x1) is always bigger than dx_limit during the recursion, leading to continual stack consumption.

Релиз	Статус	Примечание
bionic	not-affected	1:2.4-r127+dfsg1-1
cosmic	not-affected	1:2.4-r127+dfsg1-1
devel	not-affected	1:2.4-r127+dfsg1-1
disco	not-affected	1:2.4-r127+dfsg1-1
esm-apps/bionic	not-affected	1:2.4-r127+dfsg1-1
esm-apps/xenial	released	2.5+dfsg1-9+deb8u1build0.16.04.1
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE

Показывать по

Релиз	Статус	Примечание
bionic	ignored
cosmic	ignored	end of life
devel	ignored
disco	ignored
esm-apps/bionic	ignored
esm-infra-legacy/trusty	DNE
precise/esm	DNE
trusty	DNE
trusty/esm	DNE
upstream	needs-triage

Показывать по

Ссылки на источники

6.8 Medium

CVSS2

8.8 High

CVSS3

Связанные уязвимости

CVE-2019-6245

CVSS3: 8.8

nvd

около 7 лет назад

CVE-2019-6245

CVSS3: 8.8

debian

около 7 лет назад

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SV ...

GHSA-pq7q-m4p8-r3wp

CVSS3: 8.8

github

больше 3 лет назад

6.8 Medium

CVSS2

8.8 High

CVSS3

CVE-2019-6245

Описание

Пакет agg

Пакет svgpp

Ссылки на источники

Связанные уязвимости