CVE-2021-45385 — MEDIUM (6.5)

Vulnerability Description

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load(). When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to `pb->pdata` and did not exit the program. So the program crashes when it tries to access the pb->data, in jfif_encode() at jfif.c:763. This is due to the incomplete patch for CVE-2020-13438.

CVSS Score

6.5

MEDIUM

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Rockcarry	Ffjpeg	2021-12-06

Related Weaknesses (CWE)

CWE-476

References

https://github.com/rockcarry/ffjpeg/issues/47ExploitIssue TrackingThird Party Advisory
https://github.com/rockcarry/ffjpeg/pull/48Issue TrackingPatchThird Party Advisory
https://github.com/rockcarry/ffjpeg/issues/47ExploitIssue TrackingThird Party Advisory
https://github.com/rockcarry/ffjpeg/pull/48Issue TrackingPatchThird Party Advisory

FAQ

What is CVE-2021-45385?

CVE-2021-45385 is a vulnerability with a CVSS score of 6.5 (MEDIUM). A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 (2021-12-06) in bmp_load(). When the size information in metadata of the bmp is out of range, it returns without assign memory buffer t...

How severe is CVE-2021-45385?

CVE-2021-45385 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2021-45385?

Check the references section above for vendor advisories and patch information. Affected products include: Rockcarry Ffjpeg.