Unrated severityNVD Advisory· Published Oct 4, 2019· Updated Aug 5, 2024
CVE-2019-17178
CVE-2019-17178
Description
HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12- LodePNG/LodePNGdescription
- osv-coords9 versionspkg:rpm/opensuse/freerdp&distro=openSUSE%20Leap%2015.0pkg:rpm/opensuse/freerdp&distro=openSUSE%20Leap%2015.1pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Desktop%2012%20SP4pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP4pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP5pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015pkg:rpm/suse/freerdp&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2015%20SP1
< 2.0.0~rc4-lp150.10.1+ 8 more
- (no CPE)range: < 2.0.0~rc4-lp150.10.1
- (no CPE)range: < 2.0.0~rc4-lp151.5.3.1
- (no CPE)range: < 2.0.0~git.1463131968.4e66df7-12.11.1
- (no CPE)range: < 2.0.0~git.1463131968.4e66df7-12.11.1
- (no CPE)range: < 2.0.0~git.1463131968.4e66df7-12.11.1
- (no CPE)range: < 2.0.0~git.1463131968.4e66df7-12.11.1
- (no CPE)range: < 2.0.0~git.1463131968.4e66df7-12.11.1
- (no CPE)range: < 2.0.0~rc4-3.10.1
- (no CPE)range: < 2.0.0~rc4-10.4.1
Patches
Vulnerability mechanics
References
4- lists.opensuse.org/opensuse-security-announce/2019-12/msg00004.htmlmitrevendor-advisoryx_refsource_SUSE
- lists.opensuse.org/opensuse-security-announce/2019-12/msg00005.htmlmitrevendor-advisoryx_refsource_SUSE
- github.com/FreeRDP/FreeRDP/commit/9fee4ae076b1ec97b97efb79ece08d1dab4df29amitrex_refsource_MISC
- github.com/FreeRDP/FreeRDP/issues/5645mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.