Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-b4fu-4fye-efe8
Vulnerability ID VCID-b4fu-4fye-efe8
Aliases CVE-2017-12952
Summary The LoadString function in helper.h in libgig 4.0.0 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted gig file.
Status Published
Exploitability 2.0
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.04733 https://api.first.org/data/v1/epss?cve=CVE-2017-12952
epss 0.04733 https://api.first.org/data/v1/epss?cve=CVE-2017-12952
epss 0.04733 https://api.first.org/data/v1/epss?cve=CVE-2017-12952
epss 0.04733 https://api.first.org/data/v1/epss?cve=CVE-2017-12952
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2017-12952
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12952
873718 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=873718
Data source Exploit-DB
Date added Aug. 23, 2017
Description libgig 4.0.0 (LinuxSampler) - Multiple Vulnerabilities
Ransomware campaign use Unknown
Source publication date Aug. 23, 2017
Exploit type dos
Platform linux
Source update date Aug. 24, 2017
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.89643
EPSS Score 0.04733
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-11T20:26:08.710405+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0