SUSE CVE-2018-3849

In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution...

OESA-2022-1848 cfitsio security update

Security Fixes: In the ffghtb function in NASA CFITSIO 3.42, specially crafted images parsed via the library can cause a stack-based buffer overflow overwriting arbitrary data. An attacker can deliver an FIT image to trigger this vulnerability and potentially gain code execution.CVE-2018-3849 In...

NASA CFITSIO 'ffghtb' function heap buffer overflow vulnerability

NASA CFITSIO is a FITS file subroutine library for reading and writing data files in FITS Flexible Image Transfer System format. A heap buffer overflow vulnerability exists in the 'ffghtb' function in NASA CFITSIO version 3.42. An attacker could exploit this vulnerability by sending a FIT image t...

PT-2018-16243 · Nasa +1 · Cfitsio +1

Name of the Vulnerable Software and Affected Versions: NASA CFITSIO version 3.42 Description: The issue is related to a stack-based buffer overflow in the ffghtb function. This can be triggered by specially crafted images parsed via the library, potentially allowing an attacker to overwrite...