CVE-2018-13833

Name of the Vulnerable Software and Affected Versions cmft through 2017-09-24

Description An issue was discovered that allows remote attackers to cause a denial of service, resulting in a stack-based buffer overflow and application crash, or possibly have other unspecified impacts. This is due to the cmft::rwReadFile function in image.cpp.

Recommendations For cmft through 2017-09-24, as a temporary workaround, consider disabling the cmft::rwReadFile function in image.cpp until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.