← All advisories

Unrated severityNVD Advisory· Published Jun 22, 2018· Updated Aug 5, 2024

CVE-2018-12648

CVE-2018-12648

Description

The WEBP::GetLE32 function in XMPFiles/source/FormatSupport/WEBP_Support.hpp in Exempi 2.4.5 has a NULL pointer dereference.

Affected products

6

Xorg/Exempillm-fuzzy
Range: = 2.4.5
osv-coords5 versions
pkg:rpm/opensuse/exempi&distro=openSUSE%20Leap%2015.0 pkg:rpm/opensuse/exempi&distro=openSUSE%20Leap%2015.1 pkg:rpm/opensuse/exempi&distro=openSUSE%20Tumbleweed pkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015 pkg:rpm/suse/exempi&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP1
< 2.4.5-lp150.2.3.1+ 4 more
- (no CPE)range: < 2.4.5-lp150.2.3.1
- (no CPE)range: < 2.4.5-lp151.3.3.1
- (no CPE)range: < 2.5.2-1.3
- (no CPE)range: < 2.4.5-3.3.2
- (no CPE)range: < 2.4.5-3.3.2

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

3

lists.opensuse.org/opensuse-security-announce/2019-06/msg00070.htmlmitrevendor-advisoryx_refsource_SUSE
lists.opensuse.org/opensuse-security-announce/2019-06/msg00075.htmlmitrevendor-advisoryx_refsource_SUSE
bugs.freedesktop.org/show_bug.cgimitrex_refsource_MISC

News mentions

0

No linked articles in our index yet.