Lucene search
GovTech CSGCVELIST:CVE-2023-0996HistoryFeb 24, 2023 - 3:35 a.m.
CVE-2023-0996
2023-02-2403:35:58
CWE-120
GovTech CSG
www.cve.org
vulnerability
libheif
image parsing
buffer overflow
memcpy call
0.002 Low
EPSS
Percentile
54.6%
There is a vulnerability in the strided image data parsing code in the emscripten wrapper for libheif. An attacker could exploit this through a crafted image file to cause a buffer overflow in linear memory during a memcpy call.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "libheif",
"repo": "https://github.com/strukturag/libheif",
"vendor": "Struktur",
"versions": [
{
"status": "affected",
"version": "1.14.2"
}
]
}
]Related
cve
cve
CVE-2023-0996
2023-02-24 04:15:12
prion
prion
Buffer overflow
2023-02-24 04:15:00
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0144)
2023-04-17 00:00:00
Mageia: Security Advisory (MGASA-2024-0243)
2024-06-28 00:00:00
Ubuntu: Security Advisory (USN-6847-1)
2024-06-26 00:00:00
redos
redos
ROS-20230322-01
2023-03-22 00:00:00
ubuntucve
ubuntucve
CVE-2023-0996
2023-02-24 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-03-01 09:19:47
osv
osv
CVE-2023-0996
2023-02-24 04:15:12
libheif vulnerabilities
2024-06-25 16:50:16
nvd
nvd
CVE-2023-0996
2023-02-24 04:15:12
debiancve
debiancve
CVE-2023-0996
2023-02-24 04:15:12
nessus
nessus
mageia
mageia
Updated libheif packages fix security vulnerability
2023-04-15 22:03:44
Updated libheif packages fix security vulnerabilities
2024-06-28 05:41:31
ubuntu
ubuntu
libheif vulnerabilities
2024-06-25 00:00:00