Lucene search
K

6 matches found

NVD
NVD
added 5 hours ago6 views

CVE-2026-13708

Imager::File::JPEG versions before 1.003 for Perl leak heap memory when reading a JPEG with repeated APP13 markers in ireadjpegwiol. ireadjpegwiol walks the marker list libjpeg returns and, for each APP13 marker, allocates a new buffer with iptcitext = mymalloc... and overwrites the previous...

Exploits0References2
CVE
CVE
added 7 hours ago6 views

CVE-2026-13708

Affected software: Imager::File::JPEG (Perl). Vulnerability: In i_readjpeg_wiol, for each APP13 marker encountered while reading a JPEG, a new buffer is allocated and assigned to *iptc_itext without freeing the previous buffer. The final payload is converted to a Perl scalar and freed, but the ea...

6.1AI score
Exploits0References2
NVD
NVD
added 2026/05/15 12:17 p.m.13 views

CVE-2026-8454

Imager::File::GIF versions through 1.002 for Perl allow a heap out of bounds OOB write on crafted multi-frame GIF files. Imager::File::GIF's ireadgifmultilow allocates a single per-row buffer GifRow sized for the GIF's global screen width 'SWidth' and reuses it across every image in the file. The...

5.3CVSS0.00193EPSS
Exploits0References3
CVE
CVE
added 2026/05/15 10:57 a.m.21 views

CVE-2026-8454

CVE-2026-8454 affects Imager::File::GIF (Perl) up to version 1.002. The root cause is a single per-row GifRow buffer sized to the GIF’s global SWidth being reused across multiple images, with a missing bounds check in the parallel skip-image path (DGifGetLine with Width) that can lead to a heap o...

5.3CVSS5.9AI score0.00193EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.13 views

Imager::File::GIF 缓冲区错误漏洞

Imager::File::GIF is a Perl image module developed by Tony Cook, which supports the reading, writing, and processing of GIF images. Versions of Imager::File::GIF 1.002 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the ireadgifmultilow function, which allocate...

5.3CVSS6AI score0.00193EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/15 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-8669

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Imager versions through 1.030 for Perl allow a heap out of bounds OOB write on crafted multi-frame GIF files. Imager::File::GIF's ireadgifmultilow allocates a...

6.5CVSS5.7AI score0.00321EPSS
Exploits0References3
Rows per page
Query Builder