im_vips2dz in /libvips/libvips/deprecated/im_vips2dz.c in libvips prior to 8.8.2 has an uninitialized variable which may cause the leakage of remote server path or stack address.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
libvips libvips |
||
debian debian linux 9.0 |
||
fedoraproject fedora 32 |