CVE-2008-3639
EPSS 8.0%cupsys - several vulnerabilities
發布日:2008/10/14修改日:2026/4/28
描述
Heap-based buffer overflow in the read_rle16 function in imagetops in CUPS before 1.3.9 allows remote attackers to execute arbitrary code via an SGI image with malformed Run Length Encoded (RLE) data containing a small image and a large row count.
受影響套件(2)
- Debian/cupsfrom 0, < 1.3.8-1lenny2
- Debian/cupsysfrom 0, < 1.2.7-4etch5