CVE-2018-7998

NameCVE-2018-7998
DescriptionIn libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
ReferencesDLA-1306-1
NVD severitymedium
Debian Bugs892589

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
vips (PTS)stretch8.4.5-1+deb9u1fixed
stretch (security)8.4.5-1+deb9u2fixed
buster8.7.4-1+deb10u1fixed
bullseye8.10.5-2fixed
bookworm, sid8.11.4-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
vipssourcewheezy7.28.5-1+deb7u2DLA-1306-1
vipssourcestretch8.4.5-1+deb9u1
vipssource(unstable)8.4.5-2low892589

Notes

[jessie] - vips <no-dsa> (Minor issue)
https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5
https://github.com/jcupitt/libvips/issues/893

Search for package or bug name: Reporting problems