64 matches found
CVE-2026-25920
SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, a heap out-of-bounds read vulnerability exists in SumatraPDF's MOBI HuffDic decompressor. The bounds check in AddCdicData only validates half the range that DecodeOne actually accesses. Opening a crafted .mobi file can read...
CVE-2026-25920
SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, a heap out-of-bounds read vulnerability exists in SumatraPDF's MOBI HuffDic decompressor. The bounds check in AddCdicData only validates half the range that DecodeOne actually accesses. Opening a crafted .mobi file can read...
PT-2026-7171
Name of the Vulnerable Software and Affected Versions SumatraPDF versions 3.5.2 and earlier Description A heap out-of-bounds read issue exists in SumatraPDF's MOBI HuffDic decompressor. The bounds check within the AddCdicData function does not validate the complete range accessed by the DecodeOne...
CVE-2026-23951
SumatraPDF is a multi-format reader for Windows. All versions contain an off-by-one error in the validation code that only triggers with exactly 2 records, causing an integer underflow in the size calculation. This bug exists in PalmDbReader::GetRecord when opening a crafted Mobi file, resulting ...
CVE-2026-23951
SumatraPDF is affected by an off-by-one error in PalmDbReader::GetRecord when opening crafted Mobi files, triggering only with exactly 2 records and causing an integer underflow in the size calculation. This leads to an out-of-bounds heap read that crashes the application. The CVE notes indicate ...
CVE-2026-23951 SumatraPDF's Integer Underflow in PalmDbReader Leads to Crash
SumatraPDF is a multi-format reader for Windows. All versions contain an off-by-one error in the validation code that only triggers with exactly 2 records, causing an integer underflow in the size calculation. This bug exists in PalmDbReader::GetRecord when opening a crafted Mobi file, resulting ...
EUVD-2018-3744
Malware in sbrugna...
EUVD-2018-3465
Malware in sbrugna...
EUVD-2018-3745
Malware in sbrugna...
EUVD-2018-3467
Malware in sbrugna...
EUVD-2018-3468
Malware in sbrugna...
EUVD-2018-3469
Malware in sbrugna...
EUVD-2018-3466
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2018-11435
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The mobidecompresshuffmaninternal function in compression.c in Libmobi 0.3 allows remote attackers to cause information disclosure read access violation via a...
SUSE CVE-2018-11724
The mobipk1decrypt function in encryption.c in Libmobi 0.3 allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other impact via a crafted mobi file...
CVE-2022-29788
libmobi before v0.10 contains a NULL pointer dereference via the component mobibuffergetpointer. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mobi file...
CVE-2022-29788
libmobi before v0.10 contains a NULL pointer dereference via the component mobibuffergetpointer. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mobi file...
DEBIAN-CVE-2022-29788
libmobi before v0.10 contains a NULL pointer dereference via the component mobibuffergetpointer. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mobi file...
Null pointer dereference
libmobi before v0.10 contains a NULL pointer dereference via the component mobibuffergetpointer. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mobi file...
CVE-2022-29788
libmobi before v0.10 contains a NULL pointer dereference via the component mobibuffergetpointer. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted mobi file...