The lzw_add_to_dict function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted image.
References
| Link | Resource |
|---|---|
| http://www.securityfocus.com/bid/98728 | |
| https://github.com/jsummers/imageworsener/issues/27 | Issue Tracking Patch Third Party Advisory |
| http://www.securityfocus.com/bid/98728 | |
| https://github.com/jsummers/imageworsener/issues/27 | Issue Tracking Patch Third Party Advisory |
Configurations
History
21 Nov 2024, 03:35
| Type | Values Removed | Values Added |
|---|---|---|
| References | () http://www.securityfocus.com/bid/98728 - | |
| References | () https://github.com/jsummers/imageworsener/issues/27 - Issue Tracking, Patch, Third Party Advisory |
Information
Published : 2017-05-19 19:29
Updated : 2024-11-21 03:35
NVD link : CVE-2017-9094
Mitre link : CVE-2017-9094
CVE.ORG link : CVE-2017-9094
JSON object : View
Products Affected
entropymine
- imageworsener
CWE
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')