PT-2018-7113 · Netpbm+1 · Netpbm+1

Publicado

2017-02-20

Atualizado

2019-06-24

CVE-2017-2579

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions: netpbm versions prior to 10.61

Description: An out-of-bounds read issue was discovered, which could be triggered by a maliciously crafted file. This might cause the application to crash or potentially allow code execution. The expandCodeOntoStack() function is identified as having an insufficient code value check.

Recommendations: For versions prior to 10.61, update to version 10.61 or later to resolve the issue. As a temporary workaround, consider avoiding the use of potentially malicious files until the update is applied.

Correção

Out of bounds Read

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-125

Identificadores relacionados

CVE-2017-2579

MGASA-2017-0058

OPENSUSE-SU-2019:1605-1

OPENSUSE-SU-2019_1605-1

SUSE-SU-2019:14101-1

SUSE-SU-2019:1525-1

SUSE-SU-2019:1645-1

SUSE-SU-2019_14101-1

SUSE-SU-2019_1525-1

SUSE-SU-2019_1645-1

Produtos afetados

Suse

Netpbm

PT-2018-7113 · Netpbm+1 · Netpbm+1

CVE-2017-2579

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 26