CVE-2024-27929 | SixLabors ImageSharp up to 3.1.2 PNG Image PngDecoderCore.cs InitializeImage use after free

Inserito da Angelo Barbosa | Mar 5, 2024 | CVE

A vulnerability, which was classified as critical, has been found in SixLabors ImageSharp up to 3.1.2. This issue affects the function InitializeImage of the file PngDecoderCore.cs of the component PNG Image Handler. The manipulation leads to use after free.

The identification of this vulnerability is CVE-2024-27929. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-27929 | SixLabors ImageSharp up to 3.1.2 PNG Image PngDecoderCore.cs InitializeImage use after free

Post correlati

CVE-2023-52841 | Linux Kernel up to 5.10.200/5.15.138/6.1.62/6.5.11/6.6.1 vidtv kstrdup null pointer dereference

CVE-2024-4691 | OpenText Application Automation Tools Plugin up to 24.1.0 on Jenkins ALM Octane Configurations permission

CVE-2023-48129 | kimono-oldnew mini-app on Line 13.6.1 Channel Access Token information disclosure

Login required