CVE-2018-7998

NameCVE-2018-7998
DescriptionIn libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-1306-1
NVD severitymedium (attack range: remote)
Debian Bugs892589

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
vips (PTS)jessie7.40.6-2vulnerable
stretch8.4.5-1+deb9u1fixed
bullseye, sid, buster8.7.4-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
vipssource(unstable)8.4.5-2low892589
vipssourcestretch8.4.5-1+deb9u1medium
vipssourcewheezy7.28.5-1+deb7u2mediumDLA-1306-1

Notes

[jessie] - vips <no-dsa> (Minor issue)
https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5
https://github.com/jcupitt/libvips/issues/893

Search for package or bug name: Reporting problems