Lucene search
K

44 matches found

UbuntuCve
UbuntuCve
added 2026/01/19 5:15 p.m.3 views

CVE-2026-23530

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

9.8CVSS6AI score0.00443EPSS
Exploits1References8
EUVD
EUVD
added 2026/01/19 4:58 p.m.3 views

EUVD-2026-3311

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

8.7CVSS5.9AI score0.00443EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2026/01/19 4:58 p.m.5 views

CVE-2026-23530

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

9.8CVSS5.7AI score0.00443EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/19 4:58 p.m.0 views

CVE-2026-23530 FreeRDP has heap-buffer-overflow in planar_decompress_plane_rle

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

8.7CVSS5.9AI score0.00443EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2020-11538

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than...

8.1CVSS6.2AI score0.02514EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/02/15 4:29 a.m.3 views

SUSE CVE-2018-8788

FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nscrledecode that results in a memory corruption and possibly even a remote code execution...

8.8CVSS8.2AI score0.074EPSS
Exploits1References10
SUSE CVE
SUSE CVE
added 2023/02/15 3:59 a.m.3 views

SUSE CVE-2020-11538

In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311...

8.1CVSS6.9AI score0.02514EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2022/07/08 12:0 a.m.8 views

The vulnerability in the libImaging/TgaRleDecode.c component of the Pillow image processing library allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the libImaging/TgaRleDecode.c component of the Pillow image processing library is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected...

10CVSS7.3AI score0.01923EPSS
Exploits1References5Affected Software2
ATTACKERKB
ATTACKERKB
added 2022/05/25 12:15 p.m.2 views

CVE-2022-30595

libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files...

9.8CVSS6AI score0.01923EPSS
Exploits1References3
OSV
OSV
added 2022/05/25 12:15 p.m.4 views

PYSEC-2022-43145

libImaging/TgaRleDecode.c in Pillow 9.1.0 has a heap buffer overflow in the processing of invalid TGA image files...

9.8CVSS7.1AI score0.01923EPSS
Exploits1References2
OSV
OSV
added 2022/05/24 5:5 p.m.8 views

GHSA-R7RM-8J6H-R933 Buffer Copy without Checking Size of Input in Pillow

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7AI score0.04212EPSS
Exploits0References12
OSV
OSV
added 2021/04/07 11:2 a.m.3 views

OESA-2021-1127 python-pillow security update

Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. Security Fixes: In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SG...

7.5CVSS7.2AI score0.04851EPSS
Exploits0References5
OSV
OSV
added 2021/03/19 4:15 a.m.4 views

DEBIAN-CVE-2021-25293

An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c...

7.5CVSS6.9AI score0.01601EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 4:15 a.m.2 views

ALPINE-CVE-2021-25293

An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c...

7.5CVSS8.7AI score0.01601EPSS
Exploits0References1
OSV
OSV
added 2021/03/19 4:15 a.m.5 views

PYSEC-2021-39

An issue was discovered in Pillow before 8.1.1. There is an out-of-bounds read in SGIRleDecode.c...

7.5CVSS6.9AI score0.01601EPSS
Exploits0References2
PyPA
PyPA
added 2021/01/12 9:15 a.m.7 views

PYSEC-2021-71

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.8CVSS7.2AI score0.01573EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2020/06/25 7:15 p.m.2 views

DEBIAN-CVE-2020-11538

In libImaging/SgiRleDecode.c in Pillow through 7.0.0, a number of out-of-bounds reads exist in the parsing of SGI image files, a different issue than CVE-2020-5311...

8.1CVSS6.2AI score0.02514EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2020/06/25 12:0 a.m.7 views

PT-2020-12675 · Pillow +5 · Pillow +5

Name of the Vulnerable Software and Affected Versions: Pillow versions prior to 7.0.1 Description: The issue exists in the parsing of SGI image files, where a number of out-of-bounds reads are present in the libImaging/SgiRleDecode.c module. Recommendations: For versions prior to 7.0.1, update to...

9.8CVSS6.6AI score0.99856EPSS
Exploits22References114
OSV
OSV
added 2020/01/03 1:15 a.m.2 views

DEBIAN-CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS6.7AI score0.04212EPSS
Exploits0References1
OSV
OSV
added 2020/01/03 1:15 a.m.7 views

UBUNTU-CVE-2020-5311

libImaging/SgiRleDecode.c in Pillow before 6.2.2 has an SGI buffer overflow...

9.8CVSS7.1AI score0.04212EPSS
Exploits0References4
Rows per page
Query Builder