CVE-2021-28856

CVE-2021-28856

EPSS 0.9%

In Deark before v1.5.8, a specially crafted input file can cause a division by zero in (src/fmtutil.c) because of the value of pixelsize.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://fatihhcelik.github.io/posts/Division-By-Zero-Deark/https://github.com/fuzzing2026/CVE-PoCs/tree/main/deark-CVE-2021-28856 https://github.com/jsummers/deark/commit/62acb7753b0e3c0d3ab3c15057b0a65222313334