Findings for Container Security, High, [TheRedHatter/javagoof:Dockerfile]:Divide By Zero (#1670) · Issues · Administrator / ticket

Findings for Container Security, High, [TheRedHatter/javagoof:Dockerfile]:Divide By Zero

Created by: armorcodegithubpreprod[bot]

Findings for Container Security, High, [TheRedHatter/javagoof:Dockerfile]:Divide By Zero

Component Details

Exploit Maturity: no-known-exploit
Vulnerable Package: -
Current Version: -
Vulnerable Version(s): ><2.40.21-0+deb9u1
Vulnerable Path: >null

NVD Description

Note: Versions mentioned in the description apply to the upstream librsvg package. See How to fix? for Debian:9 relevant versions.

A SIGFPE is raised in the function box_blur_line of rsvg-filter.c in GNOME librsvg 2.40.17 during an attempted parse of a crafted SVG file, because of incorrect protection against division by zero.

References

Debian Security Tracker
GitHub Commit
https://bugzilla.gnome.org/show_bug.cgi?id=783835
https://git.gnome.org/browse/librsvg/commit/?id=ecf9267a24b2c3c0cd211dbdfa9ef2232511972a
MLIST
Security Focus
UBUNTU
Ubuntu CVE Tracker

Origin : null Type : null Image Id : null

Snyk Project Status: Active