Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2021-45385
HistoryFeb 11, 2022 - 3:18 p.m.

CVE-2021-45385

2022-02-1115:18:09
mitre
www.cve.org
2
null pointer dereference
ffjpeg d5cfd49
bmp_load
metadata
out of range
memory buffer
program crash
jfif_encode

EPSS

0.001

Percentile

40.0%

JSON

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load(). When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb->pdata and did not exit the program. So the program crashes when it tries to access the pb->data, in jfif_encode() at jfif.c:763. This is due to the incomplete patch for CVE-2020-13438.

Related

prion 2
nvd 2
cve 2
cvelist 1
cnvd 1
prion
prion
Null pointer dereference
2022-02-11 16:15:00
Code injection
2020-05-24 23:15:00
nvd
nvd
CVE-2021-45385
2022-02-11 16:15:08
CVE-2020-13438
2020-05-24 23:15:09
cve
cve
CVE-2021-45385
2022-02-11 16:15:08
CVE-2020-13438
2020-05-24 23:15:09
cvelist
cvelist
CVE-2020-13438
2020-05-24 22:29:36
cnvd
cnvd
ffjpeg Denial of Service Vulnerability (CNVD-2022-12798)
2022-02-15 00:00:00

EPSS

0.001

Percentile

40.0%

JSON
Related for CVELIST:CVE-2021-45385
prion2nvd2cve2cvelist1cnvd1