58 matches found
OSV-2025-797 Heap-buffer-overflow in ProcessRows
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=447845730 Crash type: Heap-buffer-overflow WRITE Crash state: ProcessRows DecodeImageData VP8LDecodeImage...
Linux Distros Unpatched Vulnerability : CVE-2022-38230
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc. CVE-2022-38230 Note that Nessus reli...
OSV-2025-627 Null-dereference READ in ProcessRows
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=438295348 Crash type: Null-dereference READ Crash state: ProcessRows DecodeImageData VP8LDecodeImage...
SUSE CVE-2018-14435
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...
SUSE CVE-2022-38230
XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...
The vulnerability of the decode_png() function in the TorchVision computer vision system, which allows a intruder to trigger a service failure
The vulnerability of the decodepng function in the TorchVision computer vision system lies in the handling of PNG format files, where data is read beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2022-38230
XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...
UBUNTU-CVE-2022-38230
XPDF commit ffaf11c was discovered to contain a floating point exception FPE via DCTStream::decodeImage at /xpdf/Stream.cc...
XPDF 安全漏洞
XPDF is an open source PDF reader from FOO Labs. The product supports decoding files in LZW compressed format and reading encrypted PDF files. XPDF has a security vulnerability that originates from DCTStream::decodeImage in /xpdf/Stream.cc contains a floating point exception FPE...
DEBIAN-CVE-2020-10938
GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c...
UBUNTU-CVE-2020-10938
GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c...
PT-2019-13235 · Foolabs · Xpdf
Name of the Vulnerable Software and Affected Versions: Xpdf version 4.01.01 Description: A heap-based buffer overflow can occur in the DCTStream::decodeImage function in Stream.cc when writing to frameBuf memory. This issue can be triggered by sending a crafted PDF document to the pdftotext tool,...
DEBIAN-CVE-2019-7175
In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c...
UBUNTU-CVE-2018-18458
The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted pdf file, as demonstrated by pdftoppm...
DEBIAN-CVE-2018-18458
The function DCTStream::decodeImage in Stream.cc in Xpdf 4.00 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted pdf file, as demonstrated by pdftoppm...
DEBIAN-CVE-2018-14435
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...
UBUNTU-CVE-2018-14435
ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...
jasper: heap buffer overflow flaws lead to arbitrary code execution (CERT VU#887409)
A heap-based buffer overflow flaw was found in the way JasPer decoded JPEG 2000 compressed image files. An attacker could create a malicious JPEG 2000 compressed image file that, when opened, would cause applications that use JasPer such as Nautilus to crash or, potentially, execute arbitrary cod...