CVE-2018-7998

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.
Configurations

Configuration 1

cpe:2.3:a:libvips_project:libvips:*:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*

Information

Published : 2018-03-09 07:29

Updated : 2018-03-27 04:34


NVD link : CVE-2018-7998

Mitre link : CVE-2018-7998

Products Affected
No products.