Lucene search
K

97 matches found

CNNVD
CNNVD
added 2024/09/30 12:0 a.m.4 views

Giflib 安全漏洞

Giflib is a library and utility program for processing GIFs from the Giflib open source. A security vulnerability exists in Giflib version v5.2.2 that stems from vulnerability to heap buffer overflow attacks...

6.5CVSS6.8AI score0.00438EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2024/07/31 12:0 a.m.7 views

The vulnerability of ImageSharp’s 2D graphics library decoder allows a hacker to induce a service failure.

The vulnerability of the ImageSharp 2D graphics library decoder is related to uncontrolled memory allocation during the processing of GIF and JPEG files. Exploiting this vulnerability can allow an attacker to cause service interruptions...

5.3CVSS5.5AI score0.00774EPSS
Exploits0References11Affected Software1
ATTACKERKB
ATTACKERKB
added 2024/05/03 2:15 a.m.6 views

CVE-2023-37331

Kofax Power PDF GIF File Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Kofax Power PDF. User interaction is required to exploit this vulnerability in that the target must...

7.8CVSS7.7AI score0.00267EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2024/04/09 12:0 a.m.10 views

The vulnerability in the file src/gif.imageio/gifinput.cpp of the OpenImageIO image processing library allows a attacker to cause a service failure.

The vulnerability in the src/gif.imageio/gifinput.cpp file of the OpenImageIO library relates to the ability to write beyond the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

7.8CVSS7.4AI score0.0119EPSS
Exploits1References7Affected Software4
Positive Technologies
Positive Technologies
added 2024/03/01 12:0 a.m.5 views

PT-2024-21831 · Kofax · Kofax Power Pdf

Name of the Vulnerable Software and Affected Versions: Kofax Power PDF affected versions not specified Description: This issue allows remote attackers to disclose sensitive information on affected installations of Kofax Power PDF. User interaction is required to exploit this issue, where the targ...

5.5CVSS6.6AI score0.00385EPSS
Exploits0References4
OSV
OSV
added 2023/10/25 6:17 p.m.2 views

UBUNTU-CVE-2023-43281

Double Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbiloadgifmain function...

6.5CVSS5.8AI score0.01029EPSS
Exploits1References4
BDU FSTEC
BDU FSTEC
added 2023/09/20 12:0 a.m.6 views

The vulnerability of the DumpScreen2RGB() function (gif2rgb.c) in the GIFLIB library allows a hacker to gain unauthorized access to protected information.

The vulnerability of the DumpScreen2RGB function gif2rgb.c in the GIFLIB library is related to the escape of the operation beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an unauthorized person to gain unauthorized access to protected information...

7.8CVSS6.5AI score0.01222EPSS
Exploits1References8Affected Software4
RedHat Linux
RedHat Linux
added 2023/05/09 9:51 a.m.4 views

gdk-pixbuf: heap-based buffer overflow when compositing or clearing frames in GIF files

A heap-based buffer overflow vulnerability was found in GNOME GdkPixbuf aka GDK-PixBuf when compositing or clearing frames in GIF files. The vulnerability exists due to a boundary error when processing GIF images. This flaw allows an attacker to create a specially crafted GIF image, trick the...

7.8CVSS6.2AI score0.00748EPSS
Exploits1References6
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.4 views

Corel CorelDRAW Graphics Suite 缓冲区错误漏洞

Corel CorelDRAW Graphics Suite is a vector graphics editing software from Corel Digital Technology Canada. Corel CorelDRAW Graphics Suite version 23.5.0.506 contains a buffer overflow vulnerability, which stems from a lack of proper validation of user-supplied data when parsing GIF files and can ...

5.5CVSS7.2AI score0.00807EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:9 a.m.2 views

SUSE CVE-2007-6697

Buffer overflow in the LWZReadByte function in IMGgif.c in SDLimage before 1.2.7 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted GIF file, a similar issue to CVE-2006-4484. NOTE: some of these details are obtained from third...

7.5CVSS8.3AI score0.10731EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.4 views

SUSE CVE-2009-1097

Multiple buffer overflows in Java SE Development Kit JDK and Java Runtime Environment JRE 6 Update 12 and earlier allow remote attackers to access files or execute arbitrary code via 1 a crafted PNG image that triggers an integer overflow during memory allocation for display on the splash screen,...

9.3CVSS8.1AI score0.07089EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:36 a.m.3 views

SUSE CVE-2013-4298

The ReadGIFImage function in coders/gif.c in ImageMagick before 6.7.8-8 allows remote attackers to cause a denial of service memory corruption and application crash via a crafted comment in a GIF image...

4.3CVSS6.7AI score0.04688EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 5:24 a.m.4 views

SUSE CVE-2014-9709

The GetCode function in gdgifin.c in GD 2.1.1 and earlier, as used in PHP before 5.5.21 and 5.6.x before 5.6.5, allows remote attackers to cause a denial of service buffer over-read and application crash via a crafted GIF image that is improperly handled by the gdImageCreateFromGif function...

5CVSS6.8AI score0.15531EPSS
Exploits1References12
SUSE CVE
SUSE CVE
added 2023/02/15 4:23 a.m.4 views

SUSE CVE-2018-17436

ReadCode in decompress.c in the HDF HDF5 through 1.10.3 library allows attackers to cause a denial of service invalid write access via a crafted HDF5 file. This issue was triggered while converting a GIF file to an HDF file...

6.5CVSS6.7AI score0.01312EPSS
Exploits1References8
OSV
OSV
added 2022/11/14 7:15 a.m.1 views

UBUNTU-CVE-2022-45198

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification...

7.5CVSS6.8AI score0.01184EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2022/11/14 7:15 a.m.3 views

CVE-2022-45198

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification...

7.5CVSS6.8AI score0.01184EPSS
Exploits0References7
PyPA
PyPA
added 2022/11/14 7:15 a.m.6 views

PYSEC-2022-42979

Pillow before 9.2.0 performs Improper Handling of Highly Compressed GIF Data Data Amplification...

7.5CVSS7AI score0.01184EPSS
Exploits0References6Affected Software1
CNNVD
CNNVD
added 2022/10/03 12:0 a.m.6 views

Autodesk Design Review 缓冲区错误漏洞

Autodesk Design Review ADR is a suite of AutoCAD drafting software assistance software from the American company Autodesk. The software supports viewing, marking, measuring, printing, and tracking changes to 2D and 3D design files. A buffer error vulnerability exists in Autodesk Design Review and...

7.8CVSS8AI score0.00242EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2022/08/24 12:0 a.m.8 views

The vulnerability of the ReadGifHeader() function in the HDF5 library libhdf5 allows a hacker to execute arbitrary code on the target system.

The vulnerability of the ReadGifHeader function in the HDF5 library libhdf5 is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow an attacker to execute arbitrary code on the target system by having the user open a specially created malicious GIF file...

8.4CVSS8AI score0.00618EPSS
Exploits1References5Affected Software3
OSV
OSV
added 2022/08/22 7:15 p.m.2 views

DEBIAN-CVE-2022-25972

An out-of-bounds write vulnerability exists in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially-crafted GIF file can lead to code execution. An attacker can provide a malicious file to trigger this vulnerability...

7.8CVSS7.5AI score0.00589EPSS
Exploits1References1
Rows per page
Query Builder