CVE-2018-10112
- Source
- https://nvd.nist.gov/vuln/detail/CVE-2018-10112
- Import Source
- https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-10112.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/CVE-2018-10112
- Related
- Published
- 2018-04-16T09:58:10Z
- Modified
- 2025-01-08T04:51:23.484975Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
An issue was discovered in GEGL through 0.3.32. The gegltilebackendswapconstructed function in buffer/gegl-tile-backend-swap.c allows remote attackers to cause a denial of service (write access violation) or possibly have unspecified other impact via a malformed PNG file that is mishandled during a call to the bablformatgetbytesper_pixel function in babl-format.c in babl 0.1.46.
- References
Affected packages
Debian:11 / gegl
Package
- Name
- gegl
- Purl
- pkg:deb/debian/gegl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
1:0.*
1:0.4.26-2
1:0.4.28-1
1:0.4.28-2
1:0.4.28-3
1:0.4.30-1
1:0.4.32-1
1:0.4.32-2
1:0.4.34-1
1:0.4.36-1
1:0.4.36-2
1:0.4.36-3
1:0.4.36-3.1
1:0.4.38-1
1:0.4.40-1
1:0.4.40-2
1:0.4.42-1
1:0.4.42-2
1:0.4.44-1
1:0.4.44-2
1:0.4.44-3
1:0.4.46-1
1:0.4.46-3
1:0.4.46-4
1:0.4.46-4.1~exp1
1:0.4.48-1
1:0.4.48-1.1~exp1
1:0.4.48-2
1:0.4.48-2.1
1:0.4.48-2.2
1:0.4.48-2.4
1:0.4.48-2.5
1:0.4.50-1
1:0.4.52-1
Debian:12 / gegl
Package
- Name
- gegl
- Purl
- pkg:deb/debian/gegl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Debian:13 / gegl
Package
- Name
- gegl
- Purl
- pkg:deb/debian/gegl?arch=source
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected