CVE-2016-3993

Published: May 13, 2016

Modified: Aug 6, 2024

PUBLISHED

Description

Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://git.enlightenment.org/legacy/imlib2.git/commit/?id=ce94edca1ccfbe314cb7cd9453433fad404ec7ef

x_refsource_CONFIRM

[Enlightenment-announce] 20160501 imlib2 1.4.9

mailing-list

x_refsource_MLIST

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=819818

x_refsource_CONFIRM

DSA-3555

vendor-advisory

x_refsource_DEBIAN

openSUSE-SU-2016:1330

vendor-advisory

x_refsource_SUSE

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2016-3993

Description

Affected Products

References