CVE-2018-7998

See a problem?
Please try reporting it to the source first.
Source
https://nvd.nist.gov/vuln/detail/CVE-2018-7998
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2018-7998.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2018-7998
Downstream
Published
2018-03-09T19:29:01Z
Modified
2025-09-16T06:58:03.790499Z
Severity
  • 7.5 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vipsregiongenerate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.

References

Affected packages

Debian:11 / vips

Package

Name
vips
Purl
pkg:deb/debian/vips?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.5-2

Ecosystem specific 

{
    "urgency": "low"
}

Debian:12 / vips

Package

Name
vips
Purl
pkg:deb/debian/vips?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.5-2

Ecosystem specific 

{
    "urgency": "low"
}

Debian:13 / vips

Package

Name
vips
Purl
pkg:deb/debian/vips?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.5-2

Ecosystem specific 

{
    "urgency": "low"
}

Debian:14 / vips

Package

Name
vips
Purl
pkg:deb/debian/vips?arch=source

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8.4.5-2

Ecosystem specific 

{
    "urgency": "low"
}

Git / github.com/jcupitt/libvips

Affected ranges

Type
GIT
Repo
https://github.com/jcupitt/libvips
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
20d840e6da15c1574b3ed998bc92f91d1e36c2a5
Type
GIT
Repo
https://github.com/libvips/libvips
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
29e05dabaf0772bac57bad63b2e09ce1c9298c4b

Affected versions

v7.*

v7.28.0
v7.30.0

v8.*

v8.0-beta
v8.1
v8.2.2
v8.2.3
v8.3.0
v8.4.2
v8.5.1
v8.5.2
v8.5.3
v8.5.4
v8.5.5
v8.5.6
v8.5.7
v8.5.8
v8.5.9
v8.6.0
v8.6.0-alpha1
v8.6.0-alpha2
v8.6.0-alpha3
v8.6.0-alpha4
v8.6.0-alpha5
v8.6.0-beta1
v8.6.0-beta2
v8.6.1
v8.6.2

Database specific 

{
    "vanir_signatures": [
        {
            "signature_type": "Line",
            "id": "CVE-2018-7998-2415b40c",
            "source": "https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "libvips/include/vips/foreign.h"
            },
            "digest": {
                "line_hashes": [
                    "306926423683472828317704438232217260033",
                    "277502447855396680736552641980594366635",
                    "60324371128634066185810503912703753954",
                    "46965884156854872856711803342893603777"
                ],
                "threshold": 0.9
            }
        },
        {
            "signature_type": "Line",
            "id": "CVE-2018-7998-51caee8d",
            "source": "https://github.com/libvips/libvips/commit/29e05dabaf0772bac57bad63b2e09ce1c9298c4b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "libvips/colour/icc_transform.c"
            },
            "digest": {
                "line_hashes": [
                    "74971341457739111062111131691742175785",
                    "44772031049909002966425481476098777198",
                    "102701039234728829292451413723282066390",
                    "145609127429089827125319393627334277342",
                    "178398260312620861944776409928790400255",
                    "328738077399853880013936568294173244734",
                    "259987416250558282849050694309490209494",
                    "233140730868419980135888439614774466878",
                    "54581753103257050674532694059278708035",
                    "47813536290551216746321807822127493885",
                    "325053430058307081669778602120269925429",
                    "95521321950089192257447280734394407591",
                    "100603343823782997565240292078322801838",
                    "337152236042029709084901898249719314304",
                    "168170405060649004115573762720131899176",
                    "270610453301636106727844918001982753000",
                    "267164239819226960294607640470899918859"
                ],
                "threshold": 0.9
            }
        },
        {
            "signature_type": "Function",
            "id": "CVE-2018-7998-6b377808",
            "source": "https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "function": "vips_foreign_load_start",
                "file": "libvips/foreign/foreign.c"
            },
            "digest": {
                "length": 727.0,
                "function_hash": "218512315501625304912560481540080997760"
            }
        },
        {
            "signature_type": "Line",
            "id": "CVE-2018-7998-b7f96901",
            "source": "https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "file": "libvips/foreign/foreign.c"
            },
            "digest": {
                "line_hashes": [
                    "74971341457739111062111131691742175785",
                    "269345774935057705419413702627315801641",
                    "168304705553438508146335368674068646877",
                    "56335366994696899431774619255624391828",
                    "339680074312113606083540884884732141390",
                    "29243557630705950689171324433621822952",
                    "23393416851620940943205440885912574856",
                    "47612449997992787440572348434302158533",
                    "101420819265531338736456940068176335718",
                    "56780132785993053343655089612002781683",
                    "184858710503790449278907834426119569883",
                    "339659324962237870371255317078229467245"
                ],
                "threshold": 0.9
            }
        },
        {
            "signature_type": "Function",
            "id": "CVE-2018-7998-c1855c16",
            "source": "https://github.com/libvips/libvips/commit/29e05dabaf0772bac57bad63b2e09ce1c9298c4b",
            "deprecated": false,
            "signature_version": "v1",
            "target": {
                "function": "vips_icc_import_build",
                "file": "libvips/colour/icc_transform.c"
            },
            "digest": {
                "length": 977.0,
                "function_hash": "133729574824333541002856427186533978344"
            }
        }
    ]
}