5 matches found
USN-6437-1: VIPS vulnerabilities
Ziqiang Gu discovered that VIPS could be made to dereference a NULL pointer. If a user or automated system were tricked into processing a specially crafted input image file, an attacker could possibly use this issue to cause a denial of service. This issue only affected Ubuntu 16.04 LTS and Ubunt...
Ubuntu 16.04 ESM / 18.04 ESM / 22.04 ESM : VIPS vulnerabilities (USN-6437-1)
The remote Ubuntu 16.04 ESM / 18.04 ESM / 22.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6437-1 advisory. Ziqiang Gu discovered that VIPS could be made to dereference a NULL pointer. If a user or automated system were tricked into...
[SECURITY] [DLA 1306-1] vips security update
Package : vips Version : 7.28.5-1+deb7u2 CVE ID : CVE-2018-7998 Debian Bug : 892589 It was discovered that there was NULL function pointer dereference vulnerability in vips, an image processing system for very large images. Remote attackers could cause a denial of service via a specially-crafted...
CVE-2018-7998
In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vipsregiongenerate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race conditi...
CVE-2018-7998
CVE-2018-7998 affects libvips prior to 8.6.3, where a NULL function pointer dereference in the vips_region_generate function (region.c) can be exploited by a crafted image to trigger a denial of service (remote). The vulnerability stems from a race condition involving a failed delayed load and ot...