PT-2016-3517 · Enlightenment Foundation Libraries+2 · Imlib2+2

Published

2016-04-23

Updated

2019-02-21

CVE-2014-9771

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions imlib2 versions prior to 1.4.7

Description The issue allows remote attackers to cause a denial of service, resulting in memory consumption or application crash, via a crafted image. This triggers an invalid read operation.

Recommendations For versions prior to 1.4.7, update to version 1.4.7 or later to resolve the issue.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

ALT-PU-2019-1274

CVE-2014-9771

DSA-3555-1

USN-3075-1

Affected Products

Alt Linux

Ubuntu

Imlib2

PT-2016-3517 · Enlightenment Foundation Libraries+2 · Imlib2+2

CVE-2014-9771

Related Identifiers

Affected Products

References · 39