Netpbm Project: >> Netpbm >> 10.35.0 Security Vulnerabilities
An out-of-bounds write vulnerability was found in netpbm before 10.61. A maliciously crafted file could cause the application to crash or possibly allow code execution.
CVSS Score
4.5
EPSS Score
0.003
Published
2018-07-27
A null pointer dereference vulnerability was found in netpbm before 10.61. A maliciously crafted SVG file could cause the application to crash.
CVSS Score
3.3
EPSS Score
0.001
Published
2018-07-27
A memory allocation vulnerability was found in netpbm before 10.61. A maliciously crafted SVG file could cause the application to crash.
CVSS Score
3.3
EPSS Score
0.001
Published
2018-07-27
The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted image file, as demonstrated by pbmmask.
CVSS Score
5.5
EPSS Score
0.005
Published
2018-03-25