Lucene search
K

5947 matches found

RedHat Linux
RedHat Linux
added yesterday3 views

gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds read via JPEG segment length validation in VA decoder

An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted JPEG file, causi...

7.1CVSS6AI score0.0028EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added yesterday2 views

gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds read via JPEG segment length validation in VA decoder

An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted JPEG file, causi...

7.1CVSS6AI score0.0028EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 3 days ago3 views

CVE-2026-21368

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS6.1AI score0.00059EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 3 days ago7 views

CVE-2026-21368 Out-of-bounds Write in Camera Driver

Memory Corruption when parsing jpeg commands due to unaccounted extra writes to the buffer during validation checks...

5.3CVSS6.1AI score0.00059EPSS
Exploits0References1
CVE
CVE
added 3 days ago8 views

CVE-2026-21368

CVE-2026-21368 describes an out-of-bounds write in a camera driver when parsing JPEG commands, caused by unaccounted extra writes to the buffer during validation. The CVSS vector indicates local access, high complexity, and low privileges required, with a Overall impact of low confidentiality, in...

5.3CVSS6.1AI score0.00059EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 3 days ago4 views

CVE-2026-13708

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in ireadjpegwiol. ireadjpegwiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptcitext = mymalloc... and overwrites the previous...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References3
EUVD
EUVD
added 3 days ago5 views

EUVD-2026-41873

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in ireadjpegwiol. ireadjpegwiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptcitext = mymalloc... and overwrites the previous...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References2
Cvelist
Cvelist
added 3 days ago31 views

CVE-2026-13708 Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in i_readjpeg_wiol

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in ireadjpegwiol. ireadjpegwiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptcitext = mymalloc... and overwrites the previous...

0.00375EPSS
Exploits0References2
Debian CVE
Debian CVE
added 3 days ago5 views

CVE-2026-13708

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in ireadjpegwiol. ireadjpegwiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptcitext = mymalloc... and overwrites the previous...

7.5CVSS6.1AI score0.00375EPSS
Exploits0
Positive Technologies
Positive Technologies
added 3 days ago7 views

PT-2026-55932

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in i readjpeg wiol. i readjpeg wiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptc itext = mymalloc... and overwrites the previous...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References5
OSV
OSV
added 6 days ago7 views

SUSE-SU-2026:2744-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issue - CVE-2026-52719: gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds read via JPEG segment length validation in VA decoder bsc1268401...

7.1CVSS5.9AI score0.0028EPSS
Exploits0References3
OSV
OSV
added 6 days ago3 views

SUSE-SU-2026:2743-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issue - CVE-2026-52719: gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds read via JPEG segment length validation in VA decoder bsc1268401...

7.1CVSS5.9AI score0.0028EPSS
Exploits0References3
OSV
OSV
added last week2 views

GHSA-2V8P-FQPX-2Q3W jxl-oxide: integer subtraction overflow panic in cluster_from_table via crafted JXL input (DoS)

Summary Logic bug in decodesimpletableslow may cause integer arithmetic overflow when decoding Modular image with certain kind of MA tree, which may panic with overflow-checks enabled. Impact Denial of service: any application passing untrusted JXL data to JxlImage::renderframe or equivalent can ...

6.2CVSS5.9AI score
Exploits0References2
NVD
NVD
added last week11 views

CVE-2024-14037

Redsea Cloud eHR contains an arbitrary file upload vulnerability that allows unauthenticated attackers to achieve remote code execution by uploading malicious files through the PtFjk.mob servlet endpoint. Attackers can submit a multipart POST request with a JSP webshell disguised using a spoofed...

9.8CVSS0.00708EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 6:53 a.m.2 views

OPENSUSE-SU-2026:21204-1 Security update for gstreamer-plugins-bad

This update for gstreamer-plugins-bad fixes the following issue - CVE-2026-52719: gstreamer1-plugins-bad-free: GStreamer: Out-of-bounds read via JPEG segment length validation in VA decoder bsc1268401...

7.1CVSS5.9AI score0.0028EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/07/01 10:9 p.m.5 views

CVE-2026-55597

A flaw was found in ImageMagick, a free and open-source software for editing and manipulating digital images. An incorrect handling of arguments in the JP2 encoder can lead to a heap buffer overwrite. This vulnerability could allow an attacker to cause a denial of service DoS by providing a...

5.5CVSS5.8AI score0.00103EPSS
Exploits0References5
CVE
CVE
added 2026/07/01 7:3 p.m.56 views

CVE-2026-55597

CVE-2026-55597 affects ImageMagick prior to 7.1.2-26, where incorrect handling of arguments can cause a heap buffer overwrite in the JP2 encoder. The issue is fixed in 7.1.2-26. This can lead to memory corruption in the JP2 encoding path; upgrading to the fixed release is the advised remediation.

5.5CVSS5.9AI score0.00103EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.7 views

EulerOS 2.0 SP15 : gdk-pixbuf2 (EulerOS-SA-2026-2441)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper...

7.5CVSS7.2AI score0.01069EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.6 views

EulerOS 2.0 SP15 : gdk-pixbuf2 (EulerOS-SA-2026-2482)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper...

7.5CVSS7.2AI score0.01069EPSS
Exploits1References2
EUVD
EUVD
added 2026/06/26 3:32 p.m.11 views

EUVD-2026-39772

A heap overflow in the FSViewer.exe process of FastStone Image Viewer v8.3 allows attackers to cause a execute arbitrary code in the context of the current process via supplying a crafted JPEG 2000 JP2 file...

6.5CVSS6.2AI score0.00465EPSS
Exploits0References3
Rows per page
Query Builder