Lucene search
K

58 matches found

OSV
OSV
added 2025/09/30 12:7 a.m.6 views

OSV-2025-797 Heap-buffer-overflow in ProcessRows

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=447845730 Crash type: Heap-buffer-overflow WRITE Crash state: ProcessRows DecodeImageData VP8LDecodeImage...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-38230

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc. CVE-2022-38230 Note that Nessus reli...

5.5CVSS6.1AI score0.00287EPSS
Exploits1References2
OSV
OSV
added 2025/08/14 12:14 a.m.4 views

OSV-2025-627 Null-dereference READ in ProcessRows

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=438295348 Crash type: Null-dereference READ Crash state: ProcessRows DecodeImageData VP8LDecodeImage...

7.2AI score
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:25 a.m.4 views

SUSE CVE-2018-14435

ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...

3.3CVSS6.8AI score0.02109EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 3:24 a.m.4 views

SUSE CVE-2022-38230

XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...

5.5CVSS7.3AI score0.00287EPSS
Exploits1References3
BDU FSTEC
BDU FSTEC
added 2022/11/10 12:0 a.m.5 views

The vulnerability of the decode_png() function in the TorchVision computer vision system, which allows a intruder to trigger a service failure

The vulnerability of the decodepng function in the TorchVision computer vision system lies in the handling of PNG format files, where data is read beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

4.2CVSS5.7AI score
Exploits0References2Affected Software1
OSV
OSV
added 2022/08/16 9:15 p.m.4 views

CVE-2022-38230

XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References1
OSV
OSV
added 2022/08/16 9:15 p.m.1 views

UBUNTU-CVE-2022-38230

XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...

5.5CVSS5.8AI score0.00287EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.3 views

XPDF 安全漏洞

XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF has a security vulnerability that originates from DCTStream::decodeImage in /xpdf/Stream.cc contains a floating point exception FPE...

5.5CVSS5.7AI score0.00287EPSS
Exploits1References2
OSV
OSV
added 2020/03/24 4:15 p.m.1 views

DEBIAN-CVE-2020-10938

GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c...

9.8CVSS8.8AI score0.05226EPSS
Exploits0References1
OSV
OSV
added 2020/03/24 4:15 p.m.2 views

UBUNTU-CVE-2020-10938

GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c...

9.8CVSS7.5AI score0.05226EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2019/07/04 12:0 a.m.7 views

PT-2019-13235 · Foolabs · Xpdf

Name of the Vulnerable Software and Affected Versions: Xpdf version 4.01.01 Description: A heap-based buffer overflow can occur in the DCTStream::decodeImage function in Stream.cc when writing to frameBuf memory. This issue can be triggered by sending a crafted PDF document to the pdftotext tool,...

7.8CVSS7.1AI score0.01207EPSS
Exploits1References9
OSV
OSV
added 2019/03/07 11:29 p.m.2 views

DEBIAN-CVE-2019-7175

In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c...

7.5CVSS8.6AI score0.02937EPSS
Exploits1References1
OSV
OSV
added 2018/10/18 6:29 a.m.4 views

UBUNTU-CVE-2018-18458

The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted pdf file, as demonstrated by pdftoppm...

5.5CVSS6.1AI score0.01141EPSS
Exploits0References4
OSV
OSV
added 2018/10/18 6:29 a.m.2 views

DEBIAN-CVE-2018-18458

The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted pdf file, as demonstrated by pdftoppm...

5.5CVSS6.7AI score0.01141EPSS
Exploits0References1
OSV
OSV
added 2018/07/20 12:29 a.m.4 views

DEBIAN-CVE-2018-14435

ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...

6.5CVSS7.5AI score0.02109EPSS
Exploits1References1
OSV
OSV
added 2018/07/19 12:0 a.m.6 views

UBUNTU-CVE-2018-14435

ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...

6.5CVSS6.7AI score0.02109EPSS
Exploits1References3
RedHat Linux
RedHat Linux
added 2011/12/12 8:57 p.m.8 views

jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)

A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer such as Nautilus to crash or, potentially, execute arbitrary cod...

6.8CVSS7.5AI score0.10618EPSS
Exploits0References4
Rows per page
Query Builder