libvips: Unauthenticated Local Data Exposure in Image Processing

Summary

A flaw in libvips 8.19.0 can allow an attacker with local access to read sensitive data from an image. This occurs when a specific input is manipulated in a way that bypasses security checks. To fix this issue, apply the available patch to the affected software.

What to do

No fix is available yet. Check with your software vendor for updates.

Affected software

Vendor	Product	Affected versions	Fix available
libvips	libvips	8.19.0	–

Original title

A flaw has been found in libvips 8.19.0. This vulnerability affects the function vips_unpremultiply_build of the file libvips/conversion/unpremultiply.c. Executing a manipulation of the argument al...

Original description

A flaw has been found in libvips 8.19.0. This vulnerability affects the function vips_unpremultiply_build of the file libvips/conversion/unpremultiply.c. Executing a manipulation of the argument alpha_band can lead to out-of-bounds read. The attack needs to be launched locally. The exploit has been published and may be used. This patch is called 7215ead1e0cd7d3703cc4f5fca06d7d0f4c22b91. A patch should be applied to remediate this issue.

nvd CVSS2.0 1.7

nvd CVSS3.1 7.1

nvd CVSS4.0 1.9

Vulnerability type

CWE-119 Buffer Overflow

CWE-125 Out-of-bounds Read

https://github.com/libvips/libvips/ Product
https://github.com/libvips/libvips/commit/7215ead1e0cd7d3703cc4f5fca06d7d0f4c22b... Patch
https://github.com/libvips/libvips/issues/4881 Exploit Issue Tracking Vendor Advisory
https://github.com/libvips/libvips/issues/4881#issue-3944216443 Exploit Issue Tracking Vendor Advisory
https://github.com/libvips/libvips/pull/4886 Issue Tracking Patch
https://vuldb.com/?ctiid.348011 Permissions Required VDB Entry
https://vuldb.com/?id.348011 Third Party Advisory VDB Entry
https://vuldb.com/?submit.758862 Third Party Advisory VDB Entry