Lucene search
K

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/04/14 9:53 p.m.3 views

CVE-2026-33020

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixelframeconverttorgb888 in frame.c, where allocation size and pointer offset computations for palettised images PAL1, PAL...

7.1CVSS6.3AI score0.00205EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2026/04/14 9:53 p.m.5 views

CVE-2026-33020

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain an integer overflow which leads to a heap buffer overflow via sixelframeconverttorgb888 in frame.c, where allocation size and pointer offset computations for palettised images PAL1, PAL...

7.1CVSS6.4AI score0.00205EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/04/13 2:29 a.m.4 views

libpng: libpng: Information disclosure and denial of service via out-of-bounds read/write in Neon palette expansion

A flaw was found in libpng. A remote attacker could exploit an out-of-bounds read and write vulnerability in the ARM/AArch64 Neon-optimized palette expansion path. This occurs when processing a final partial chunk of 8-bit paletted rows without verifying sufficient input pixels, leading to...

7.6CVSS6.3AI score0.00585EPSS
Exploits0References7
Snyk
Snyk
added 2025/09/22 2:29 p.m.2 views

Write-what-where Condition

Overview Affected versions of this package are vulnerable to Write-what-where Condition in the TIFFReadRGBAImageOriented function while processing paletted images with malformed metadata. TIFF file. An attacker can achieve arbitrary memory write by convincing a user to open a specially crafted TI...

8.8CVSS6.7AI score0.00739EPSS
Exploits0References2
Snyk
Snyk
added 2025/09/22 2:29 p.m.5 views

Write-what-where Condition

Overview Affected versions of this package are vulnerable to Write-what-where Condition in the TIFFReadRGBAImageOriented function while processing paletted images with malformed metadata. TIFF file. An attacker can achieve arbitrary memory write by convincing a user to open a specially crafted TI...

8.8CVSS4.6AI score0.00739EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:16 a.m.2 views

SUSE CVE-2005-4048

Heap-based buffer overflow in the avcodecdefaultgetbuffer function utils.c in FFmpeg libavcodec 0.4.9-pre1 and earlier, as used in products such as 1 mplayer, 2 xine-lib, 3 Xmovie, and 4 GStreamer, allows remote attackers to execute arbitrary commands via small PNG images with palettes...

7.5CVSS8.2AI score0.05209EPSS
Exploits0References5
Rows per page
Query Builder