CVE-2019-6245 Information

Description

An issue was discovered in Anti-Grain Geometry (AGG) 2.4 as used in SVG++ (aka svgpp) 1.2.3. In the function agg::cell_aa::not_equal dx is assigned to (x2 - x1). If dx = dx_limit which is (16384 poly_subpixel_shift) this function will call itself recursively. There can be a situation where (x2 - x1) is always bigger than dx_limit during the recursion leading to continual stack consumption.

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Reference

https://github.com/svgpp/svgpp/issues/70 https://lists.debian.org/debian-lts-announce/2019/02/msg00001.html

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

HIGH

Availability Impact

HIGH

Base Score

HIGH

Base Severity

8.8