CVE-2013-1441 - OpenCVE

econvert in ExactImage 0.8.9 and earlier does not properly initialize the setjmp variable, which allows context-dependent users to cause a denial of service (crash) via a crafted image file.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:M/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Exactcode	Exactimage

Configuration 1 [-]

OR	cpe:2.3:a:exactcode:exactimage::::::::
	cpe:2.3:a:exactcode:exactimage:0.0.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.4:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.5:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.6:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.7:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.8:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.9:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.10:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.11:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.12:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.13:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.14:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.15:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.16:::::::*
	cpe:2.3:a:exactcode:exactimage:0.0.17:::::::*
	cpe:2.3:a:exactcode:exactimage:0.1.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.4:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.5:::::::*
	cpe:2.3:a:exactcode:exactimage:0.2.6:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.4:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.5:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.6:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.7:::::::*
	cpe:2.3:a:exactcode:exactimage:0.3.8:::::::*
	cpe:2.3:a:exactcode:exactimage:0.4.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.4.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.4.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.5.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.5.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.5.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.5.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.4:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.5:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.6:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.7:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.8:::::::*
	cpe:2.3:a:exactcode:exactimage:0.6.9:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.4:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.5:::::::*
	cpe:2.3:a:exactcode:exactimage:0.7.6:::::::*
	cpe:2.3:a:exactcode:exactimage:0.8.0:::::::*
	cpe:2.3:a:exactcode:exactimage:0.8.1:::::::*
	cpe:2.3:a:exactcode:exactimage:0.8.2:::::::*
	cpe:2.3:a:exactcode:exactimage:0.8.3:::::::*
	cpe:2.3:a:exactcode:exactimage:0.8.4:::::::*
cpe:2.3:a:exactcode:exactimage:0.8.5:::::::*
cpe:2.3:a:exactcode:exactimage:0.8.6:::::::*
cpe:2.3:a:exactcode:exactimage:0.8.7:::::::*
cpe:2.3:a:exactcode:exactimage:0.8.8:::::::*

References

Link	Resource
http://anonscm.debian.org/gitweb/?p=collab-maint/exactimage.git%3Ba=commitdiff%3Bh=1dff2eb586a3d10d8528a984bc471292e3789f5c%3Bhp=acfe54193b18b46e880f4b474d2e40b4fdb44a8d
http://www.debian.org/security/2013/dsa-2754
http://www.openwall.com/lists/oss-security/2013/09/05/8	Patch