CVE-2017-12924

MEDIUM

Libfpx - Divide By Zero

Title source: rule

Description

CDirVector::GetTable in dirfunc.hxx in libfpx 1.3.1_p6 allows remote attackers to cause a denial of service (divide-by-zero error) via a crafted fpx image.

References (2)

[Mailing List, Third Party Advisory] http://www.openwall.com/lists/oss-security/2017/08/17/8

[Third Party Advisory, VDB Entry] https://blogs.gentoo.org/ago/2017/08/09/libfpx-divide-by-zero-in-cdirvectorgettable-dirfunc-hxx/

Scores

CVSS v3 6.5

EPSS 0.0048

EPSS Percentile 64.9%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

Classification

CWE

CWE-369

Status draft

Affected Products (1)

libfpx_project/libfpx

Timeline

Published Aug 28, 2017

Tracked Since Feb 18, 2026