Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is a stack-based buffer over-read in calling GLib in the function gxps_images_guess_content_type of gxps-images.c in libgxps through 0.3.0 because it does not reject negative return values from a g_input_stream_read call. A crafted input will lead to a remote denial of service attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
libgxps 缓冲区错误漏洞
Vulnerability Description
libgxps是一个基于GObject(一种基于C语言的框架)的用于处理XPS文档的库。 libgxps 0.3.0及之前版本中的gxps-images.c文件的‘gxps_images_guess_content_type’函数的Glib调用存在缓冲区错误漏洞,该漏洞源于程序接收了来自g_input_stream_read调用的负的返回值。远程攻击者可借助特制的输入利用该漏洞造成拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A