All versions of the package images are vulnerable to Denial of Service (DoS) due to providing unexpected input types to several different functions. This makes it possible to reach an assert macro, leading to a process crash.
**Note:**
By providing some specific integer values (like 0) to the size function, it is possible to obtain a Segmentation fault error, leading to the process crash.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: snyk
Published: 2024-07-10T05:00:01.393Z
Updated: 2024-08-01T22:27:34.807Z
Reserved: 2023-12-22T12:33:20.121Z
Link: CVE-2024-21523
Vulnrichment
Updated: 2024-08-01T22:27:34.807Z
NVD
Status : Awaiting Analysis
Published: 2024-07-10T05:15:11.153
Modified: 2024-08-01T13:46:46.460
Link: CVE-2024-21523
Redhat
No data.