Lucene search
K

8 matches found

OSV
OSV
added 2026/05/05 10:18 a.m.9 views

CLSA-2026-1777976295 Fix CVE(s): CVE-2026-28690

SECURITY UPDATE: stack buffer overflow in MNG/JNG encoder — missing NULL check after ImageToBlob in WriteOneJNGImage could propagate a NULL blob pointer into later stack buffer operations GHSA-7h7q-j33q-hvpf. - debian/patches/CVE-2026-28690.patch: bail out of WriteOneJNGImage when ImageToBlob...

6.9CVSS7.4AI score0.00096EPSS
Exploits0References1
OSV
OSV
added 2026/04/30 9:48 a.m.6 views

CLSA-2026-1777542477 Fix CVE(s): CVE-2026-28690

SECURITY UPDATE: stack buffer overflow in MNG/JNG encoder — missing NULL check after ImageToBlob in WriteOneJNGImage could propagate a NULL blob pointer into later stack buffer operations GHSA-7h7q-j33q-hvpf. - debian/patches/CVE-2026-28690.patch: bail out of WriteOneJNGImage when ImageToBlob...

6.9CVSS7.4AI score0.00096EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/14 12:0 a.m.7 views

SUSE SLES15 Security Update : GraphicsMagick (SUSE-SU-2026:1300-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1300-1 advisory. - CVE-2026-26284: heap overflow in pcd decoder leads to out of bounds read bsc1258765. - CVE-2026-28690: missing bounds check in the MNG encode...

9.1CVSS6.1AI score0.00404EPSS
Exploits0References7
SUSE Linux
SUSE Linux
added 2026/04/13 3:58 p.m.4 views

Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues: CVE-2026-26284: heap overflow in pcd decoder leads to out of bounds read bsc1258765. CVE-2026-28690: missing bounds check in the MNG encoder can lead to a stack buffer overflow bsc1259456. Patch Instructions: To install this SUSE update u...

8.8CVSS6AI score0.00404EPSS
Exploits0References8
OpenVAS
OpenVAS
added 2026/04/09 12:0 a.m.5 views

SUSE: Security Advisory (SUSE-SU-2026:1203-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6AI score0.00475EPSS
Exploits0References23
OpenVAS
OpenVAS
added 2026/04/03 12:0 a.m.12 views

SUSE: Security Advisory (SUSE-SU-2026:20917-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS5.9AI score0.00401EPSS
Exploits0References21
OSV
OSV
added 2026/03/30 2:0 p.m.1 views

ROOT-OS-DEBIAN-11-CVE-2026-28690 CVE-2026-28690 in rootio-imagemagick - Patched by Root

Root has patched CVE-2026-28690 in the rootio-imagemagick package for Root:Debian:11. Multiple fixed versions available...

6.9CVSS5.9AI score0.00096EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/09 9:39 p.m.8 views

CVE-2026-28690

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, a stack buffer overflow vulnerability exists in the MNG encoder. There is a bounds checks missing that could corrupting the stack with attacker-controlled data...

6.9CVSS6.1AI score0.00096EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder