EPSS
Percentile
51.1%
gerbv is vulnerable to information disclosure. A specially-crafted pick-and-place file can exploit the missing initialization of a structure to leak memory contents. An attacker is able to provide a malicious file to trigger this vulnerability.
lists.fedoraproject.org/archives/list/[email protected]/message/PTGBC37N2FV7NKOWFVCFMPAFYEPHSB7C/
security-tracker.debian.org/tracker/CVE-2021-40403
talosintelligence.com/vulnerability_reports/TALOS-2021-1417
www.debian.org/security/2022/dsa-5306