Lucene search
K

7 matches found

OSV
OSV
added 2026/06/15 8:16 p.m.3 views

DEBIAN-CVE-2026-52719

An out-of-bounds read vulnerability was found in the VA JPEG decoder in GStreamer's gst-plugins-bad. The JPEG parser reads a segment length value from the bitstream without validating it against available data. A remote attacker could trick a user into opening a specially crafted JPEG file, causi...

7.1CVSS5.4AI score0.0028EPSS
Exploits0References1
Github Security Blog
Github Security Blog
added 2026/04/14 6:51 p.m.7 views

ImageMagick has a heap out-of-bounds write in JP2 encoder

Heap out-of-bounds write in the JP2 encoder with when a user specifies an invalid sampling index...

5.5CVSS5.8AI score0.00189EPSS
Exploits0References6Affected Software16
OSV
OSV
added 2026/03/31 9:16 a.m.2 views

DEBIAN-CVE-2026-5201

A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user interaction, for...

7.5CVSS8.1AI score0.01069EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:49 a.m.2 views

SUSE CVE-2012-0260

The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service memory consumption via a JPEG image with a crafted sequence of restart markers...

6.5CVSS6.6AI score0.0236EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 4:59 a.m.4 views

SUSE CVE-2016-6236

The setupimginfojpg function in lepton/jpgcoder.cc in Dropbox lepton 1.0 allows remote attackers to cause a denial of service out-of-bounds read via a crafted jpeg file...

5.5CVSS6.7AI score0.00871EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2010/06/14 11:19 p.m.5 views

OpenJDK JPEGImageReader stepX Integer Overflow Vulnerability (6909597)

Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, and 1.4.225 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the March 2010 CP...

7.5CVSS6.2AI score0.06194EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2007/10/16 7:8 a.m.5 views

Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit

Integer overflow in the embedded ICC profile image parser in Sun Java Development Kit JDK before 1.5.011-b03 and 1.6.x before 1.6.001-b06, and Sun Java Runtime Environment in JDK and JRE 6, JDK and JRE 5.0 Update 10 and earlier, SDK and JRE 1.4.214 and earlier, and SDK and JRE 1.3.120 and earlier...

6.8CVSS6.7AI score0.18185EPSS
Exploits0References4
Rows per page
Query Builder