6 matches found
CVE-2026-33642 Kitty has a Heap Buffer Over-Read/Write via Integer Overflow in compose_rectangles Bounds Check
Kitty is a cross-platform GPU based terminal. In versions 0.46.2 and below, the handlecomposecommand function in kitty/graphics.c performs bounds validation on composition offsets using unsigned 32-bit arithmetic that is subject to integer wrapping, potentially leading to Heap Buffer...
[SECURITY] Fedora 42 Update: timg-1.6.3-5.fc42
A user-friendly terminal image viewer that uses graphic capabilities of terminals Sixel, Kitty or iTerm2, or 24-bit color capabilities and Unicode character blocks if these are not available. On terminals that implement the Sixel protocol, the Kitty Graphics Protocol, or the iTerm2 Graphics...
[SECURITY] Fedora 43 Update: timg-1.6.3-5.fc43
A user-friendly terminal image viewer that uses graphic capabilities of terminals Sixel, Kitty or iTerm2, or 24-bit color capabilities and Unicode character blocks if these are not available. On terminals that implement the Sixel protocol, the Kitty Graphics Protocol, or the iTerm2 Graphics...
SUSE CVE-2020-35605
The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message...
DEBIAN-CVE-2020-35605
The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message...
UBUNTU-CVE-2020-35605
The Graphics Protocol feature in graphics.c in kitty before 0.19.3 allows remote attackers to execute arbitrary code because a filename containing special characters can be included in an error message...