{"vulnerability": "CVE-2023-40032", "sightings": [{"uuid": "61ae9c38-dff6-4e48-9dd7-a7dbb89b129c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2023-40032", "type": "seen", "source": "https://t.me/cibsecurity/70219", "content": "\u203c CVE-2023-40032 \u203c\n\nlibvips is a demand-driven, horizontally threaded image processing library. A specially crafted SVG input can cause libvips versions 8.14.3 or earlier to segfault when attempting to parse a malformed UTF-8 character. Users should upgrade to libvips version 8.14.4 (or later) when processing untrusted input.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2023-09-11T22:27:42.000000Z"}]}