VYPR
High severity7.5OSV Advisory· Published Mar 9, 2018· Updated Jun 17, 2026

CVE-2018-7998

CVE-2018-7998

Description

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vips_region_generate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race condition involving a failed delayed load and other worker threads.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Libvips/LibvipsOSV2 versions
    v7.28.0, v8.0-beta, v8.1, …+ 1 more
    • (no CPE)range: v7.28.0, v8.0-beta, v8.1, …
    • (no CPE)range: <8.6.3

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.