CVE-2018-7553

Publication date 28 February 2018

Last updated 17 July 2025


Ubuntu priority

Cvss 3 Severity Score

9.8 · Critical

Score breakdown

Description

There is a heap-based buffer overflow in the pcxLoadRaster function of in_pcx.cpp in sam2p 0.49.4. A crafted input will lead to a denial of service or possibly unspecified other impact.

From the Ubuntu Security Team

It was discovered that Sam2p incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service or other unspecified impact.

Status

Package Ubuntu Release Status
sam2p 18.04 LTS bionic Not in release
17.10 artful Not in release
16.04 LTS xenial
Fixed 0.49.2-3+deb8u3build0.16.04.1
14.04 LTS trusty
Fixed 0.49.2-3+deb8u3build0.14.04.1

Severity score breakdown

CVSS version: CVSS v3.0

Base score 9.8 · Critical

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H


Access our resources on patching vulnerabilities