3 matches found
CVE-2017-11590
There is a NULL pointer dereference in the caselesshash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote denial of service attack...
CVE-2017-11590
CVE-2017-11590 affects libgxps 0.2.5 due to a NULL pointer dereference in the caseless_hash function (gxps-archive.c). A crafted input may cause remote denial of service. The CVSS metrics in the initial entry indicate 4.3 (CVSS v2) and 7.5 (CVSS v3) with NETWORK access, low complexity and no user...
libgxps 'caseless_hash' function denial of service vulnerability
libgxps is a library for processing XPS documents based on GObject a C-based framework. A security vulnerability exists in the 'caselesshash' function in the gxps-archive.c file in libgxps version 0.2.5. A remote attacker can exploit this vulnerability with specially crafted input to cause a deni...