CVE-2018-8975
25.03.2018, 03:29
The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file, as demonstrated by pbmmask.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| netpbm_project | netpbm | 𝑥 ≤ 10.81.03 |
𝑥
= Vulnerable software versions
Debian Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| libnetpbm11 |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| libnetpbm11-32bit |
| ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| netpbm |
|
Common Weakness Enumeration
References