CVE-2019-9210Out-of-bounds Read in Advancecomp

CWE-125Out-of-bounds ReadCWE-190Integer Overflow or Wraparound11 documents9 sources
Severity
7.8HIGHNVD
EPSS
0.4%
top 37.11%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
4
Advancemame AdvancecompCanonical Ubuntu LinuxDebian Linux+1 more
Timeline
PublishedFeb 27
Latest updateMay 13

Description

In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.)

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

Debianadvancemame/advancecomp< 2.1-2+3

Also affects: Debian Linux 8.0, 9.0, Fedora 30, Ubuntu Linux 14.04, 16.04, 18.04, 18.10, 19.04

🔴Vulnerability Details

3
GHSA
GHSA-h34m-m7hc-cp2h: In AdvanceCOMP 22022-05-13
CVEList
CVE-2019-9210: In AdvanceCOMP 22019-02-27
OSV
CVE-2019-9210: In AdvanceCOMP 22019-02-27

📋Vendor Advisories

5
Ubuntu
AdvanceCOMP vulnerability2019-04-23
Ubuntu
AdvanceCOMP vulnerability2019-04-04
Red Hat
advancecomp: integer overflow in png_compress in pngex.cc2019-02-27
Microsoft
In AdvanceCOMP 2.1 png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size which results in an attempted memcpy to write into a buffer that is too small. (Ther2019-02-12
Debian
CVE-2019-9210: advancecomp - In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow u...2019

💬Community

2
Bugzilla
CVE-2019-9210 advancecomp: integer overflow in png_compress in pngex.cc [fedora-all]2019-03-01
Bugzilla
CVE-2019-9210 advancecomp: integer overflow in png_compress in pngex.cc2019-03-01
CVE-2019-9210 — Out-of-bounds Read in Advancecomp | cvebase