Security update for netpbm
This update for netpbm fixes the following issues:
- CVE-2018-8975: The pm_mallocarray2 function allowed remote attackers to cause
a denial of service (heap-based buffer over-read) via a crafted image file
(bsc#1086777).
This update was imported from the SUSE:SLE-15:Update update project.
-
Submitted by
Petr Gajdos (pgajdos)
Fixed bugs
bnc#1086777
VUL-1: CVE-2018-8975: netpbm: The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03allows remote attackers to cause a denial of service (heap-based bufferover-read) via a crafted image file, as demonstrated by pb
