2 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-1325
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in Clmg, where with the help of a maliciously crafted pandore or bmp file with modified dx and dy header field values it is possible to trick t...
CVE-2022-1325
CVE-2022-1325 affects Clmg, where a maliciously crafted pandore or bmp file with modified dx/dy headers can cause the application to allocate extremely large buffers (up to ~64 GB) when reading from disk or a buffer. This can lead to memory exhaustion/ DoS. The vulnerability details are supported...