Kwetsbaarheid CVE-2019-6247

An Issue Was Discovered In Anti-Grain Geometry (AGG) 2.4 As Used In SVG++ (aka Svgpp) 1.2.3. A Heap-based Buffer Overflow Bug In Svgpp_agg_render May Lead To Code Execution. In The Render_scanlines_aa_solid Function, The Blend_hline Function Is Called Repeatedly Multiple Times. Blend_hline Is Equivalent To A Loop Containing Write Operations. Each Call Writes A Piece Of Heap Data, And Multiple Calls Overwrite The Data In The Heap.

Algemeen

CVE
CVE-2019-6247
Leverancier(s) betrokken
Omschrijving
An Issue Was Discovered In Anti-Grain Geometry (AGG) 2.4 As Used In SVG++ (aka Svgpp) 1.2.3. A Heap-based Buffer Overflow Bug In Svgpp_agg_render May Lead To Code Execution. In The Render_scanlines_aa_solid Function, The Blend_hline Function Is Called Repeatedly Multiple Times. Blend_hline Is Equivalent To A Loop Containing Write Operations. Each Call Writes A Piece Of Heap Data, And Multiple Calls Overwrite The Data In The Heap.
Publicatie
Zaterdag, 12 Januari 2019
Gewijzigd
Zondag, 13 Januari 2019 03:00
Ernst

Referenties

Geef hieronder je email adres op en word op de hoogte gehouden van aanpassingen aan deze CVE