Segmentation Violation in swftools v0.9.2
CVE-2024-26335

Currently unrated

Key Information:

Vendor: swftools
Status: Swftools
Vendor: CVE Published:; 5 March 2024

What is CVE-2024-26335?

A vulnerability has been identified in swftools, specifically in version 0.9.2, linked to a segmentation violation within the state_free function located in swftools/src/swfc-history.c. This flaw may enable attackers to exploit the underlying memory management process of the application, potentially leading to unexpected behavior or system crashes. Proper mitigation strategies are essential for users of swftools to safeguard their systems against possible threats emanating from this vulnerability.

References

https://github.com/matthiaskramm/swftools/issues/222

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 5, 2024
Vulnerability Reserved
Feb 19, 2024