CVE-2024-53901

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions: Imager package versions prior to 1.025

Description: The issue is a heap-based buffer overflow that can lead to denial of service or possibly other unspecified impacts when the trim() method is called on a crafted input image.

Recommendations: For versions prior to 1.025, update to version 1.025 or later to resolve the issue. As a temporary workaround, consider avoiding the use of the trim() method on untrusted input images until the update is applied.

Exploit

Fix

DoS

Memory Corruption

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787CWE-120

Related Identifiers

CVE-2024-53901

Affected Products

Debian

Imager

CVE-2024-53901

Weakness Enumeration

Related Identifiers

Affected Products

References · 16