160 matches found
Linux Distros Unpatched Vulnerability : CVE-2022-27938
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stbimage.h aka the stb image loader 2.19, as used in libsixel and other products, has a reachable assertion in stbicreatepngimageraw. CVE-2022-27938 Note that...
Linux Distros Unpatched Vulnerability : CVE-2019-20056
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - stbimage.h aka the stb image loader 2.23, as used in libsixel and other products, has an assertion failure in stbishiftsigned. CVE-2019-20056 Note that Nessus...
The vulnerability of the write_indexes() function in the GdkPixbuf image loading library allows a attacker to cause a service failure.
The vulnerability of the GdkPixbuf image loading library is related to the execution of a loop with an unreachable exit condition. Exploiting this vulnerability could allow an attacker to cause a service failure...
[SECURITY] Fedora 39 Update: rust-linux-loader-0.11.0-1.fc39
A Linux kernel image loading crate...
MAL-2024-941 Malicious code in o2-ionic-image-loader-v7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c645fd90c285367a338c640179963eff4cec0a670e47392a050ca826671442bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in o2-ionic-image-loader-v7 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c645fd90c285367a338c640179963eff4cec0a670e47392a050ca826671442bd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in o2-ionic-image-loader (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 1d248abb658f1d8182b04e7135dedf8d2d25735b9f551142b202be9044280580 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
UBUNTU-CVE-2023-45661
stbimage is a single file MIT licensed library for processing images. A crafted image file may trigger out of bounds memcpy read in stbigifloadnext. This happens because twoback points to a memory address lower than the start of the buffer out. This issue may be used to leak internal memory...
SUSE CVE-2006-4519
Multiple integer overflows in the image loader plug-ins in GIMP before 2.2.16 allow user-assisted remote attackers to execute arbitrary code via crafted length values in 1 DICOM, 2 PNM, 3 PSD, 4 PSP, 5 Sun RAS, 6 XBM, and 7 XWD files...
SUSE CVE-2006-4806
Multiple integer overflows in imlib2 allow user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted 1 ARGB loaderargb.c, 2 PNG loaderpng.c, 3 LBM loaderlbm.c, 4 JPEG loaderjpeg.c, or 5 TIFF loadertiff.c images...
SUSE CVE-2008-2426
Multiple stack-based buffer overflows in Imlib 2 aka imlib2 1.4.0 allow user-assisted remote attackers to cause a denial of service crash or possibly execute arbitrary code via 1 a PNM image with a crafted header, related to the load function in src/modules/loaders/loaderpnm.c; or 2 a crafted XPM...
SUSE CVE-2016-3994
The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service application crash or obtain sensitive information via a crafted image, which triggers an out-of-bounds read...
SUSE CVE-2017-12563
In ImageMagick 7.0.6-2, a memory exhaustion vulnerability was found in the function ReadPSDImage in coders/psd.c, which allows attackers to cause a denial of service...
SUSE CVE-2021-21775
A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A specially crafted web page can lead to a potential information leak and further memory corruption. In order to trigger the vulnerability, a victim must be tricked in...
SUSE CVE-2021-26825
An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...
SUSE CVE-2021-42715
An issue was discovered in stb stbimage.h 1.33 through 2.27. The HDR loader parsed truncated end-of-file RLE scanlines as an infinite sequence of zero-length runs. An attacker could potentially have caused denial of service in applications using stbimage by submitting crafted HDR files...
SUSE CVE-2021-42716
An issue was discovered in stb stbimage.h 2.27. The PNM loader incorrectly interpreted 16-bit PGM files as 8-bit when converting to RGBA, leading to a buffer overflow when later reinterpreting the result as a 16-bit buffer. An attacker could potentially have crashed a service using stbimage, or...
SUSE CVE-2022-0546
A missing bounds check in the image loader used in Blender 3.x and 2.93.8 leads to out-of-bounds heap access, allowing an attacker to cause denial of service, memory corruption or potentially code execution...
SUSE CVE-2022-27938
stbimage.h aka the stb image loader 2.19, as used in libsixel and other products, has a reachable assertion in stbicreatepngimageraw...
Heap-based Buffer Overflow
Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in stbijpegload. Remediation There is no fixed version for stb. References - GitHub Issue Credit: bufanremi...