Vulnerabilities > CVE-2021-44335 - Out-of-bounds Write vulnerability in Ok-File-Formats Project Ok-File-Formats 20210605

CVSS 6.8 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

ok-file-formats-project

CWE-787

NVD

Published: 2022-03-03

Updated: 2022-03-14

Summary

David Brackeen ok-file-formats 203defd is vulnerable to Buffer Overflow. When the function of the ok-file-formats project is used, a heap-buffer-overflow occurs in function ok_png_transform_scanline() in "/ok_png.c:533".

Vulnerable Configurations

Part	Description	Count
Application	Ok-File-Formats_Project OK File Formats Project OK File Formats 2021-06-05	1

Common Weakness Enumeration (CWE)

CWE-787 - Out-of-bounds Write

References

https://github.com/brackeen/ok-file-formats/issues/17