CVE-2018-10112 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Gegl

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-787 — Out-of-bounds Write8 documents6 sources

Severity

8.8HIGHNVD

EPSS

0.4%

top 40.56%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Gegl Debian Gegl

Timeline

PublishedApr 16

Latest updateMay 14

Description

An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the babl_format_get_bytes_per_pixel function in babl-format.c in babl 0.1.46.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages2 packages

▶NVDgegl/gegl0.3.32

▶debiandebian/gegl

🔴Vulnerability Details

GHSA

GHSA-x849-69h5-g6m5: An issue was discovered in GEGL through 0↗2022-05-14

▶

OSV

CVE-2018-10112: An issue was discovered in GEGL through 0↗2018-04-16

▶

📋Vendor Advisories

Red Hat

gegl: write access violation in gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c↗2018-04-14

▶

Debian

CVE-2018-10112: gegl - An issue was discovered in GEGL through 0.3.32. The gegl_tile_backend_swap_const...↗2018

▶

💬Community

Bugzilla

CVE-2018-10112 gegl03: gegl: write access violation in gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c [fedora-all]↗2018-07-27

▶

Bugzilla

CVE-2018-10111 CVE-2018-10112 CVE-2018-10113 CVE-2018-10114 gegl: various flaws [fedora-all]↗2018-04-20

▶

Bugzilla

CVE-2018-10112 gegl: write access violation in gegl_tile_backend_swap_constructed function in buffer/gegl-tile-backend-swap.c↗2018-04-20

▶