CVE Vulnerabilities

CVE-2022-38266

Divide By Zero

Published: Sep 09, 2022 | Modified: Nov 21, 2024
CVSS 3.x
6.5
MEDIUM
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
CVSS 2.x
RedHat/V2
RedHat/V3
5.5 LOW
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
Ubuntu
MEDIUM

An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.

Weakness

The product divides a value by zero.

Affected Software

Name Vendor Start Version End Version
Tesseract Tesseract_project 5.0.0-alpha-20210401 (including) 5.0.0-alpha-20210401 (including)
Tesseract Ubuntu bionic *
Tesseract Ubuntu kinetic *
Tesseract Ubuntu lunar *
Tesseract Ubuntu mantic *
Tesseract Ubuntu trusty *
Tesseract Ubuntu trusty/esm *
Tesseract Ubuntu xenial *

References