CVE-2017-8325
- Source
- https://cve.org/CVERecord?id=CVE-2017-8325
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2017-8325.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2017-8325
- Published
- 2017-04-29T20:59:00.167Z
- Modified
- 2026-02-15T07:26:21.399704Z
- Severity
-
- 8.8 (High) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVSS Calculator
- Summary
- [none]
- Details
-
The iwprocesscolstointermediate function in imagew-main.c in libimageworsener.a in ImageWorsener before 1.3.1 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted image.
- References
-
- https://blogs.gentoo.org/ago/2017/04/27/imageworsener-heap-based-buffer-overflow-in-iw_process_cols_to_intermediate-imagew-main-c/
- https://github.com/jsummers/imageworsener/commit/86564051db45b466e5f667111ce00b5eeedc8fb6
- https://security.gentoo.org/glsa/201706-06
- https://github.com/jsummers/imageworsener/commit/86564051db45b466e5f667111ce00b5eeedc8fb6
- https://blogs.gentoo.org/ago/2017/04/27/imageworsener-heap-based-buffer-overflow-in-iw_process_cols_to_intermediate-imagew-main-c/
- https://github.com/jsummers/imageworsener/commit/86564051db45b466e5f667111ce00b5eeedc8fb6