2 matches found
Linux Distros Unpatched Vulnerability : CVE-2019-17546
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tifgetimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer...
PT-2019-6214 · Osgeo +3 · Gdal +3
Name of the Vulnerable Software and Affected Versions: GDAL versions 3.0.1 and earlier Description: The issue is related to a double free in the OGRExpatRealloc function in the ogr/ogr expat.cpp file of the GDAL library, which occurs when the 10MB threshold is exceeded. This can allow a remote...