Lucene search
K

66514 matches found

OSV
OSV
added 2026/05/14 8:17 p.m.7 views

UBUNTU-CVE-2026-43905

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, jpeg2000input.cpp:395 computes buffer size as const int bufsize = w h ch bufferbpp using signed 32-bit arithmetic. When the product...

7.8CVSS6AI score0.00173EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2026/05/14 8:2 p.m.9 views

CVE-2026-44637

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6AI score0.0016EPSS
Exploits1
CVE
CVE
added 2026/05/14 8:2 p.m.19 views

CVE-2026-44637

CVE-2026-44637 affects libsixel (SIXEL encoder/decoder). A signed integer overflow in the parser’s image-buffer doubling loop (sixel_decode_raw_impl) occurs as context->pos_x is incremented by repeat_count with no upper bound check. When pos_x nears INT_MAX, pos_x + repeat_count overflows sign...

7.1CVSS6AI score0.0016EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2026/05/14 8:2 p.m.9 views

EUVD-2026-30412

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6AI score0.0016EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/14 8:2 p.m.32 views

CVE-2026-44637 libsixel: integer overflow in parser

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS0.0016EPSS
Exploits1References1
Cvelist
Cvelist
added 2026/05/14 8:1 p.m.39 views

CVE-2026-44636 libsixel: integer overflow in encoder

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixelencodehighcolor's allocation size calculation can lead to a heap buffer overflow. The public sixelencode entry point validates only that width and height are greater th...

7.4CVSS0.00104EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/14 8:1 p.m.10 views

CVE-2026-44636 libsixel: integer overflow in encoder

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixelencodehighcolor's allocation size calculation can lead to a heap buffer overflow. The public sixelencode entry point validates only that width and height are greater th...

7.4CVSS6.3AI score0.00104EPSS
Exploits0References1
CVE
CVE
added 2026/05/14 8:1 p.m.27 views

CVE-2026-44636

CVE-2026-44636 affects libsixel (SIXEL encoder/decoder). A signed integer overflow in sixel_encode_highcolor’s allocation size calculation (widthheight) can cause a heap buffer overflow when encoding very large pixel buffers; callers may trigger allocation wrapping if width height > INT_MAX. T...

7.8CVSS6.3AI score0.00104EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/05/14 8:1 p.m.9 views

EUVD-2026-30409

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, signed integer overflow in sixelencodehighcolor's allocation size calculation can lead to a heap buffer overflow. The public sixelencode entry point validates only that width and height are greater th...

7.4CVSS6.3AI score0.00104EPSS
Exploits0References1
OSV
OSV
added 2026/05/14 7:56 p.m.5 views

CLSA-2026-1778772686 libsoup: Fix of CVE-2026-2369

CVE-2026-2369: fix integer underflow in sniffunknown on zero-length buffer that caused an out-of-bounds read in the content sniffer...

9.1CVSS5.9AI score0.0042EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/14 7:52 p.m.11 views

EUVD-2026-30395

Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00252EPSS
Exploits0References2
CVE
CVE
added 2026/05/14 7:52 p.m.20 views

CVE-2026-8577

CVE-2026-8577 affects Google Chrome before 148.0.7778.168, where an integer overflow in the Fonts component could allow a remote attacker to execute arbitrary code in the sandbox via a crafted HTML page. This is a browser-level vulnerability in Chrome/Chromium’s font handling. According to the pr...

8.8CVSS6.3AI score0.00252EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/05/14 7:52 p.m.6 views

CVE-2026-8577

Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00252EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8577

Integer overflow in Fonts in Google Chrome prior to 148.0.7778.168 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

8.8CVSS6.3AI score0.00252EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8573

Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

5.9AI score0.00233EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/14 7:52 p.m.15 views

EUVD-2026-30389

Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

8.3CVSS5.9AI score0.00233EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8573

Integer overflow in Codecs in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to potentially perform a sandbox escape via a crafted video file. Chromium security severity: Medium...

8.3CVSS5.9AI score0.00233EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/05/14 7:52 p.m.9 views

CVE-2026-8567

Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Medium...

5.9AI score0.00183EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/05/14 7:52 p.m.5 views

CVE-2026-8567

Integer overflow in ANGLE in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: Medium...

4.3CVSS5.5AI score0.00183EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/14 7:52 p.m.6 views

CVE-2026-8559

Integer overflow in Internationalization in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker to perform an out of bounds memory write via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.9AI score0.00176EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder