Your submission was sent successfully! Close

CVE-2021-3548

Published: 26 May 2021

A flaw was found in dmg2img through 20170502. dmg2img did not validate the size of the read buffer during memcpy() inside the main() function. This possibly leads to memory layout information leaking in the data. This might be used in a chain of vulnerability in order to reach code execution.

Priority

Low

CVSS 3 base score: 7.1

Status

Package Release Status
dmg2img
Launchpad, Ubuntu, Debian
bionic Needed

focal Needed

groovy Ignored
(reached end-of-life)
hirsute Ignored
(reached end-of-life)
impish Needed

jammy Needed

precise Does not exist

trusty Does not exist

upstream Needed

xenial Ignored
(out of standard support)