CVE-2012-4433

描述

Multiple integer overflows in operations/external/ppm-load.c in GEGL (Generic Graphics Library) 0.2.0 allow remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a large (1) width or (2) height value in a Portable Pixel Map (ppm) image, which triggers a heap-based buffer overflow.

受影響套件(1)

• Debian/geglfrom 0, < 0.2.0-2+nmu1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2012-4433