Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The image rendering component (createGenericPreview) of the Open Whisper Signal app through 2.29.0 for iOS fails to check for unreasonably large images before manipulating received images. This allows for a large image sent to a user to exhaust all available memory when the image is displayed, resulting in a forced restart of the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Open Whisper Signal app for iOS图像渲染组件安全漏洞
Vulnerability Description
Open Whisper Signal app for iOS是一款基于iOS平台的具有加密功能的即时聊天应用程序。 基于iOS平台的Open Whisper Signal app 2.29.0及之前版本中的图像渲染组件(createGenericPreview)存在安全漏洞,该漏洞源于程序在处理接收的图像之前未能检查尺寸大小不合理的图像。攻击者可通过向用户发送大尺寸的图像利用该漏洞耗尽所有可用的内存,进而迫使设备重启。
CVSS Information
N/A
Vulnerability Type
N/A