Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 554
Alerts This Week
Warning Icon 1 554

Debian 7: DLA-1306-1 Critical: Vips NULL Pointer Denial of Service

debian lts
Calendar Grey March 11, 2018
Dist Debian Esm H88
A critical security notice has been issued by VIPS concerning a NULL pointer dereference vulnerability that poses a potential risk of denial of service for users of Debian 7.
It was discovered that there was NULL function pointer dereference vulnerability in vips, an image processing system for very large images

Summary

For Debian 7 "Wheezy", this issue has been fixed in vips version
7.28.5-1+deb7u2.

We recommend that you upgrade your vips packages.


Regards,

- --
,'`.
: :' : Chris Lamb
`. `'` lamby@debian.org / chris-lamb.co.uk
`-



Severity
critical
Lowest
Low
Medium
High
Critical

Package: vips
Version: 7.28.5-1+deb7u2
CVE ID: CVE-2018-7998
Debian Bug: #892589

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.