OSGeo GDAL 1.4.1

CPE Details

OSGeo GDAL 1.4.1
osgeo
gdal
1.4.1
2019-10-28
15h23 +00:00
2019-10-28
15h23 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:osgeo:gdal:1.4.1:*:*:*:*:*:*:*

Informations

Vendor

osgeo

Product

gdal

Version

1.4.1

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2019-17545 2019-10-13 23h07 +00:00 GDAL through 3.0.1 has a poolDestroy double free in OGRExpatRealloc in ogr/ogr_expat.cpp when the 10MB threshold is exceeded.
9.8
Critique
CVE-2019-17546 2019-10-13 23h07 +00:00 tif_getimage.c in LibTIFF through 4.0.10, as used in GDAL through 3.0.1 and other products, has an integer overflow that potentially causes a heap-based buffer overflow via a crafted RGBA image, related to a "Negative-size-param" condition.
8.8
Haute