Lucene search

K

MitreCVELIST:CVE-2022-28471

HistoryMay 05, 2022 - 12:37 p.m.

CVE-2022-28471

2022-05-0512:37:18

mitre

www.cve.org

3

ffjpeg bmp_load integer heap jfif_encode patch issue 38 complete vulnerability

EPSS

0.001

Percentile

36.8%

In ffjpeg (commit hash: caade60), the function bmp_load() in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfif_encode() in jfif.c. This is due to the incomplete patch for issue 38

References

github.com/rockcarry/ffjpeg/issues/49

EPSS

0.001

Percentile

36.8%

Related for CVELIST:CVE-2022-28471

nvd1 prion1 cve1