The Imager package before 1.025 for Perl has a heap-based buffer overflow leading to denial of service, or possibly unspecified other impact, when the trim() method is called on a crafted input image. Rated medium severity (CVSS 5.5), this vulnerability is no authentication required, low attack complexity. Public exploit code available.
Buffer Overflow
Denial Of Service
Memory Corruption
Imager
NVD
GitHub
CVSS 3.1
5.5
EPSS
0.4%