There is a NULL pointer dereference in the caseless_hash function in gxps-archive.c in libgxps 0.2.5. A crafted input will lead to a remote denial of service attack.
References
Link | Resource |
---|---|
https://bugzilla.redhat.com/show_bug.cgi?id=1473167 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2017-07-23 18:29
Updated : 2017-07-28 07:24
NVD link : CVE-2017-11590
Mitre link : CVE-2017-11590
JSON object : View
CWE
CWE-476
NULL Pointer Dereference
Products Affected
gnome
- libgxps