Lucene search
K

5 matches found

Ubuntu
Ubuntu
added 2023/10/18 2:40 p.m.65 views

USN-6437-1: VIPS vulnerabilities

Ziqiang Gu discovered that VIPS could be made to dereference a NULL pointer. If a user or automated system were tricked into processing a specially crafted input image file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubunt...

7.5CVSS6.6AI score0.02297EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2023/10/18 12:0 a.m.27 views

Ubuntu 16.04 ESM / 18.04 ESM / 22.04 ESM : VIPS vulnerabilities (USN-6437-1)

The remote Ubuntu 16.04 ESM / 18.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6437-1 advisory. Ziqiang Gu discovered that VIPS could be made to dereference a NULL pointer. If a user or automated system were tricked into...

7.5CVSS6.5AI score0.02297EPSS
Exploits3References6
Debian
Debian
added 2018/03/11 5:50 p.m.21 views

[SECURITY] [DLA 1306-1] vips security update

Package : vips Version : 7.28.5-1+deb7u2 CVE ID : CVE-2018-7998 Debian Bug : 892589 It was discovered that there was NULL function pointer dereference vulnerability in vips, an image processing system for very large images. Remote attackers could cause a denial of service via a specially-crafted...

7.5CVSS6.8AI score0.0188EPSS
Exploits1
NVD
NVD
added 2018/03/09 7:29 p.m.17 views

CVE-2018-7998

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vipsregiongenerate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race conditi...

7.5CVSS7.3AI score0.0188EPSS
Exploits1References3
CVE
CVE
added 2018/03/09 7:0 p.m.48 views

CVE-2018-7998

CVE-2018-7998 affects libvips prior to 8.6.3, where a NULL function pointer dereference in the vips_region_generate function (region.c) can be exploited by a crafted image to trigger a denial of service (remote). The vulnerability stems from a race condition involving a failed delayed load and ot...

7.5CVSS7.2AI score0.0188EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder