CVE-2018-7998

NameCVE-2018-7998
DescriptionIn libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-1306-1
Debian Bugs892589

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
vips (PTS)jessie7.40.6-2vulnerable
stretch (security), stretch (lts), stretch8.4.5-1+deb9u2fixed
buster8.7.4-1+deb10u1fixed
bullseye8.10.5-2fixed
bookworm8.14.1-3+deb12u1fixed
trixie8.15.3-1fixed
sid8.16.0-1fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
vipssourcewheezy7.28.5-1+deb7u2DLA-1306-1
vipssourcestretch8.4.5-1+deb9u1
vipssource(unstable)8.4.5-2low892589

Notes

[jessie] - vips <no-dsa> (Minor issue)
https://github.com/jcupitt/libvips/commit/20d840e6da15c1574b3ed998bc92f91d1e36c2a5
https://github.com/jcupitt/libvips/issues/893

Search for package or bug name: Reporting problems