Note:
This project will be discontinued after December 13, 2021. [more]
2018-03-11
The af_get_page() function in lib/afflib_pages.cpp in AFFLIB (aka AFFLIBv3) through 3.7.16 allows remote attackers to cause a denial of service (segmentation fault) via a corrupt AFF image that triggers an unexpected pagesize value.
Products | Afflib |
Type | Improper Input Validation (CWE-20) |
First patch |
https://github.com/sshock/AFFLIBv3/commit/435a2ca802358a3debb6d164d2c33049131df81c |
Relevant file/s | ./lib/afflib_pages.cpp (modified, +5) |
Navigation
Patch data:
Patched area:
(on by default)
Patched area: