Integer Overflow Vulnerability in imlib2 Affects Multiple Platforms
CVE-2014-9771

7.5HIGH

Key Information:

Vendor

Enlightenment

Status
Imlib2
Vendor
CVE Published:
13 May 2016

What is CVE-2014-9771?

The integer overflow vulnerability in imlib2 prior to version 1.4.7 allows remote attackers to exploit crafted images, leading to memory consumption or application crashes. This vulnerability triggers an invalid read operation, potentially compromising systems that rely on image processing functionalities, rendering them susceptible to denial of service attacks.

References

https://git.enlightenment.org/legacy/imlib2.git/tree/Chan...
x_refsource_CONFIRM
https://bugzilla.redhat.com/show_bug.cgi?id=1324774
x_refsource_CONFIRM
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=820206
x_refsource_CONFIRM

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.