Lucene search
K

12 matches found

NVD
NVD
added 2026/04/23 10:16 p.m.6 views

CVE-2026-41334

OpenClaw before 2026.3.31 contains a decompression bomb vulnerability in image processing that fails to properly enforce pixel-limit guards on sips. Attackers can exploit this by uploading oversized images to cause denial of service through excessive memory consumption...

7.1CVSS0.00315EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/23 9:57 p.m.29 views

CVE-2026-41334 OpenClaw < 2026.3.31 - Decompression Bomb Denial of Service via Image Pixel-Limit Guard Bypass

OpenClaw before 2026.3.31 contains a decompression bomb vulnerability in image processing that fails to properly enforce pixel-limit guards on sips. Attackers can exploit this by uploading oversized images to cause denial of service through excessive memory consumption...

7.1CVSS0.00315EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/23 9:57 p.m.3 views

CVE-2026-41334 OpenClaw < 2026.3.31 - Decompression Bomb Denial of Service via Image Pixel-Limit Guard Bypass

OpenClaw before 2026.3.31 contains a decompression bomb vulnerability in image processing that fails to properly enforce pixel-limit guards on sips. Attackers can exploit this by uploading oversized images to cause denial of service through excessive memory consumption...

7.1CVSS5.2AI score0.00315EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/23 12:0 a.m.10 views

PT-2026-34765

OpenClaw before 2026.3.31 contains a decompression bomb vulnerability in image processing that fails to properly enforce pixel-limit guards on sips. Attackers can exploit this by uploading oversized images to cause denial of service through excessive memory consumption...

7.1CVSS5.8AI score0.00315EPSS
Exploits0References5
Snyk
Snyk
added 2026/04/03 3:1 a.m.2 views

Allocation of Resources Without Limits or Throttling

Overview openclaw is a 🦞 OpenClaw — Personal AI Assistant Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling due to the image pixel-limit guard failing to properly restrict oversized pixel counts during image processing. An attacker can exhaus...

7.1CVSS5.9AI score0.00315EPSS
Exploits0References2
OSV
OSV
added 2021/04/07 11:2 a.m.5 views

OESA-2021-1146 python-pillow security update

Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. Security Fixes: In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SG...

7.5CVSS7.2AI score0.04851EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2019/07/16 12:0 a.m.3 views

The vulnerability of the ReadCINImage function (coders/cin.c) in the syntax analysis component of the Cineon program for reading and editing ImageMagick graphic files, which allows an attacker to cause a service failure.

The vulnerability of the ReadCINImage function coders/cin.c in the syntax analysis component of the Cineon program for reading and editing ImageMagick graphic files is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service...

7.1CVSS7.7AI score0.03643EPSS
Exploits1References14Affected Software6
Akamai Blog
Akamai Blog
added 2017/04/27 5:12 p.m.15 views

The State of Mobile App Performance

In our previous blog, we saw how a new generation of users are increasing the expectations of a mobile app like never before and identified the three key success criteria for mobile apps: 1 increase customer conversions, 2 drive installs and 3 increase customer loyalty. For this blog we profiled...

6.7AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/03/01 12:0 a.m.56 views

Ubuntu 14.04 LTS / 16.04 LTS : GD library vulnerabilities (USN-3213-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3213-1 advisory. Stefan Esser discovered that the GD library incorrectly handled memory when processing certain images. If a user or automated system were...

9.8CVSS7.3AI score0.10687EPSS
Exploits0References8
Ubuntu
Ubuntu
added 2017/02/28 6:31 p.m.231 views

USN-3213-1: GD library vulnerabilities

Stefan Esser discovered that the GD library incorrectly handled memory when processing certain images. If a user or automated system were tricked into processing a specially crafted image, an attacker could cause a denial of service, or possibly execute arbitrary code. This issue only affected...

9.8CVSS7.2AI score0.10687EPSS
Exploits0
NVD
NVD
added 2017/01/26 3:59 p.m.19 views

CVE-2016-9317

The gdImageCreate function in the GD Graphics Library aka libgd before 2.2.4 allows remote attackers to cause a denial of service system hang via an oversized image...

7.1CVSS6.2AI score0.03581EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/12/14 12:0 a.m.36 views

Fedora 20 : openstack-nova-2013.2-4.fc20 (2013-22667)

Ensure we don't boot oversized images CVE-2013-4463 and CVE-2013-2096 - Require ipmitool for baremetal driver 1022243 - Remove cert and scheduler hard dependency on cinderclient 1031679 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora...

2.1CVSS5.3AI score0.00438EPSS
Exploits1References6
Rows per page
Query Builder