Lucene search

K
redosRedosROS-20221118-03
HistoryNov 18, 2022 - 12:00 a.m.

ROS-20221118-03

2022-11-1800:00:00
redos.red-soft.ru
10
pixman library
rasterize edges
buffer boundaries
memory
exploitation
arbitrary code
remote execution

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.9%

The vulnerability of Pixman library’s rasterize_edges_8 function is related to the possibility of writing beyond buffer boundaries
in memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute
arbitrary code

OSVersionArchitecturePackageVersionFilename
redos7.3x86_64pixman<Β 0.40.0-3UNKNOWN

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

EPSS

0.003

Percentile

71.9%