CVE-2017-12921

Name of the Vulnerable Software and Affected Versions libfpx version 1.3.1 p6

Description The issue allows remote attackers to cause a denial of service, specifically a NULL pointer dereference, by providing a crafted fpx image. This is due to a problem in the PFileFlashPixView::GetGlobalInfoProperty function in f fpxvw.cpp.

Recommendations For libfpx version 1.3.1 p6, consider avoiding the use of crafted fpx images to prevent the denial of service. At the moment, there is no information about a newer version that contains a fix for this issue.