XMP Toolkit 2021.07 (and earlier) is affected by a Null pointer dereference vulnerability when parsing a specially crafted file. An unauthenticated attacker could leverage this vulnerability to achieve an application denial-of-service in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Debian | 12 | all | exempi | < 2.6.0-1 | exempi_2.6.0-1_all.deb |
Debian | 11 | all | exempi | <= 2.5.2-1 | exempi_2.5.2-1_all.deb |
Debian | 10 | all | exempi | < 2.5.0-2+deb10u1 | exempi_2.5.0-2+deb10u1_all.deb |
Debian | 999 | all | exempi | < 2.6.0-1 | exempi_2.6.0-1_all.deb |
Debian | 13 | all | exempi | < 2.6.0-1 | exempi_2.6.0-1_all.deb |