GDAL 3.3.0 through 3.4.0 has a heap-based buffer overflow in PCIDSK::CPCIDSKFile::ReadFromFile (called from PCIDSK::CPCIDSKSegment::ReadFromFile and PCIDSK::CPCIDSKBinarySegment::CPCIDSKBinarySegment). Reference: https://github.com/OSGeo/gdal/pull/4944 https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=41993
Created gdal tracking bugs for this issue: Affects: epel-all [bug 2049071] Affects: fedora-all [bug 2049069] Created mingw-gdal tracking bugs for this issue: Affects: fedora-all [bug 2049070]
This CVE Bugzilla entry is for community support informational purposes only as it does not affect a package in a commercially supported Red Hat product. Refer to the dependent bugs for status of those individual community products.