Divide By Zero

CVE-2021-28856

Medium

5.5/10

Summary

In Deark before v1.5.8, a specially crafted input file can cause a division by zero in (src/fmtutil.c) because of the value of pixelsize.

Attack Complexity: LOW
Attack Vector: LOCAL
Integrity Impact: NONE
Scope: UNCHANGED
User Interaction: REQUIRED
Privileges Required: NONE
Confidentiality Impact: NONE
Availability Impact: HIGH

CWE-369 - Divide By Zero

The product divides a value by zero.

References

Advisory Timeline

Published Apr 14, 2021