In AdvanceCOMP 2.1, png_compress in pngex.cc in advpng has an integer overflow upon encountering an invalid PNG size, which results in an attempted memcpy to write into a buffer that is too small. (There is also a heap-based buffer over-read.)
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
History
21 Nov 2024, 04:51
Type | Values Removed | Values Added |
---|---|---|
References | () https://lists.debian.org/debian-lts-announce/2019/03/msg00004.html - Mailing List, Third Party Advisory | |
References | () https://lists.debian.org/debian-lts-announce/2021/12/msg00034.html - Mailing List, Third Party Advisory | |
References | () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/R56LVWC7KUNXFRKQB3Y5NX2YHFJKYZB4/ - | |
References | () https://sourceforge.net/p/advancemame/bugs/277/ - Exploit, Third Party Advisory | |
References | () https://usn.ubuntu.com/3936-1/ - Third Party Advisory | |
References | () https://usn.ubuntu.com/3936-2/ - Third Party Advisory |
06 Apr 2022, 18:27
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* | |
References | (FEDORA) https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/R56LVWC7KUNXFRKQB3Y5NX2YHFJKYZB4/ - Mailing List, Third Party Advisory | |
References | (MLIST) https://lists.debian.org/debian-lts-announce/2021/12/msg00034.html - Mailing List, Third Party Advisory |
30 Dec 2021, 00:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
Information
Published : 2019-02-27 14:29
Updated : 2024-11-21 04:51
NVD link : CVE-2019-9210
Mitre link : CVE-2019-9210
CVE.ORG link : CVE-2019-9210
JSON object : View
Products Affected
debian
- debian_linux
canonical
- ubuntu_linux
fedoraproject
- fedora
advancemame
- advancecomp