Your submission was sent successfully! Close

CVE-2017-2579

Published: 27 July 2018

An out-of-bounds read vulnerability was found in netpbm before 10.61. The expandCodeOntoStack() function has an insufficient code value check, so that a maliciously crafted file could cause the application to crash or possibly allows code execution.

Priority

Medium

CVSS 3 base score: 7.8

Status

Package Release Status
netpbm-free
Launchpad, Ubuntu, Debian
precise Not vulnerable
(code not present)
trusty Does not exist
(trusty was not-affected [code not present])
upstream Needs triage

xenial Not vulnerable
(code not present)
yakkety Not vulnerable
(code not present)