Vulnerabilities > CVE-2021-44334 - Out-of-bounds Write vulnerability in Ok-File-Formats Project Ok-File-Formats 20210306

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

ok-file-formats-project

CWE-787

NVD

Published: 2022-02-28

Updated: 2022-03-08

Summary

David Brackeen ok-file-formats 97f78ca is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurs in function ok_jpg_convert_YCbCr_to_RGB() in "/ok_jpg.c:513" .

Vulnerable Configurations

Part	Description	Count
Application	Ok-File-Formats_Project OK File Formats Project OK File Formats 2021-03-06	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/brackeen/ok-file-formats/issues/12