CVE-2018-20819

CVE-2018-20819

io/ZlibCompression.cc in the decompression component in Dropbox Lepton 1.2.1 allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact by crafting a jpg image file. The root cause is a missing check of header payloads that may be (incorrectly) larger than the maximum file size.

Source: CVE-2018-20819

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다