CVE-2018-8050 (NVD)

2018-03-11

The af_get_page() function in lib/afflib_pages.cpp in AFFLIB (aka AFFLIBv3) through 3.7.16 allows remote attackers to cause a denial of service (segmentation fault) via a corrupt AFF image that triggers an unexpected pagesize value.

Products Afflib
Type Improper Input Validation (CWE-20)
First patch https://github.com/sshock/AFFLIBv3/commit/435a2ca802358a3debb6d164d2c33049131df81c
Relevant file/s ./lib/afflib_pages.cpp (modified, +5)

AFFLIBv3 - Tree: 435a2ca802

(? files)

Filter Settings
Files
Navigation
Patch data:

(on by default)


Patched area: