CVE-2021-44960

Sažetak

In SVGPP SVG++ library 1.3.0, the XMLDocument::getRoot function in the renderDocument function handled the XMLDocument object improperly, returning a null pointer in advance at the second if, resulting in a null pointer reference behind the renderDocument function.

Reference

https://github.com/svgpp/svgpp/issues/101.aa
https://github.com/svgpp/svgpp/issues/101
https://lists.debian.org/debian-lts-announce/2023/04/msg00001.html

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

01-04-2023 - 18:15

Objavljeno

15-02-2022 - 16:15