Lucene search
K

304 matches found

OSV
OSV
added 2026/04/06 4:16 p.m.2 views

UBUNTU-CVE-2026-34380

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, a signed integer overflow exists in undopxr24impl in src/lib/OpenEXRCore/internalpxr24.c at line 377. The...

5.9CVSS5.8AI score0.00255EPSS
Exploits1References11
Cvelist
Cvelist
added 2026/03/24 2:42 p.m.44 views

CVE-2026-4775 Libtiff: libtiff: arbitrary code execution or denial of service via signed integer overflow in tiff file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS0.00553EPSS
Exploits0References29
RedHat Linux
RedHat Linux
added 2026/02/26 4:25 a.m.10 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
NVD
NVD
added 2026/02/25 3:20 p.m.10 views

CVE-2026-27691

iccDEV provides a set of libraries and tools for working with ICC color management profiles. In versions up to and including 2.3.1.4, signed integer overflow in iccFromCube.cpp during multiplication triggers undefined behavior, potentially causing crashes or incorrect ICC profile generation when...

6.2CVSS0.0016EPSS
Exploits1References4
RedHat Linux
RedHat Linux
added 2026/02/25 3:20 p.m.4 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/02/25 12:0 a.m.12 views

PT-2026-21911

iccDEV provides a set of libraries and tools for working with ICC color management profiles. In versions up to and including 2.3.1.4, signed integer overflow in iccFromCube.cpp during multiplication triggers undefined behavior, potentially causing crashes or incorrect ICC profile generation when...

6.2CVSS5.4AI score0.0016EPSS
Exploits1References5
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.8 views

iccDEV 安全漏洞

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.4 contained security vulnerabilities. These vulnerabilities stemmed from a signed integer overflow during multiplication in the iccFromCube.cpp file, which...

6.2CVSS6AI score0.0016EPSS
Exploits1References4
OSV
OSV
added 2026/02/24 3:31 p.m.3 views

GHSA-VHQJ-F5CJ-9X8H ImageMagick has heap-buffer-overflow via signed integer overflow in WriteUHDRImage when writing UHDR images with large dimensions

WriteUHDRImage in coders/uhdr.c uses int arithmetic to compute the pixel buffer size. When image dimensions are large, the multiplication overflows 32-bit int, causing an undersized heap allocation followed by an out-of-bounds write. This can crash the process or potentially lead to an out of...

8.2CVSS5.7AI score0.0042EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2026/02/24 3:31 p.m.18 views

ImageMagick has heap-buffer-overflow via signed integer overflow in WriteUHDRImage when writing UHDR images with large dimensions

WriteUHDRImage in coders/uhdr.c uses int arithmetic to compute the pixel buffer size. When image dimensions are large, the multiplication overflows 32-bit int, causing an undersized heap allocation followed by an out-of-bounds write. This can crash the process or potentially lead to an out of...

8.2CVSS5.6AI score0.0042EPSS
Exploits0References5Affected Software19
Cvelist
Cvelist
added 2026/02/24 12:53 a.m.23 views

CVE-2026-25794 ImageMagick has heap-buffer-overflow via signed integer overflow in `WriteUHDRImage` when writing UHDR images with large dimensions

ImageMagick is free and open-source software used for editing and manipulating digital images. WriteUHDRImage in coders/uhdr.c uses int arithmetic to compute the pixel buffer size. Prior to version 7.1.2-15, when image dimensions are large, the multiplication overflows 32-bit int, causing an...

8.2CVSS0.0042EPSS
Exploits0References1
CVE
CVE
added 2026/02/24 12:53 a.m.37 views

CVE-2026-25794

ImageMagick (WriteUHDRImage in coders/uhdr.c) is affected by a signed 32-bit int overflow when computing the pixel buffer size for large dimensions, causing an undersized heap allocation and an out-of-bounds write. A patch is available in version 7.1.2-15 that fixes this issue. The CVE entry note...

8.2CVSS5.6AI score0.0042EPSS
Exploits0References4Affected Software1
Snyk
Snyk
added 2026/02/24 12:53 a.m.7 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this...

8.2CVSS6.2AI score0.0042EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/11 5:6 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 4:37 p.m.3 views

kernel: tcp: fix a signed-integer-overflow bug in tcp_add_backlog()

A flaw was found in the Linux kernel’s TCP implementation in the function tcpaddbacklog. When calculating the maximum acceptable backlog for TCP sockets, the sum of the receive buffer skrcvbuf, the send buffer sksndbuf, and a fixed constant may exceed the maximum value of a signed integer due to...

5.9AI score0.00168EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/05 3:46 a.m.8 views

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

8.6CVSS5.9AI score0.00557EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/02 3:27 a.m.10 views

Moderate: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

7.8CVSS7.4AI score0.00517EPSS
Exploits3References11
AlmaLinux
AlmaLinux
added 2026/02/02 12:0 a.m.12 views

Moderate: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: IB/hfi1: Fix sdma.h tx-numdescs off-by-one error CVE-2024-26766 kernel: RDMA/core: Fix "KASAN: slab-use-after-free Read in...

7.8CVSS6.2AI score0.00517EPSS
Exploits3References22
OSV
OSV
added 2026/01/23 4:15 p.m.5 views

UBUNTU-CVE-2025-67125

A signed integer overflow in docopt.cpp v0.6.2 LeafPattern::match in docoptprivate.h when merging occurrence counters e.g., default LONGMAX + first user "-v/--verbose" can cause counter wrap negative/unbounded semantics and lead to logic/policy bypass in applications that rely on occurrence-based...

4.4CVSS5.8AI score0.0021EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/01/23 12:0 a.m.19 views

CVE-2025-67125

A signed integer overflow in docopt.cpp v0.6.2 LeafPattern::match in docoptprivate.h when merging occurrence counters e.g., default LONGMAX + first user "-v/--verbose" can cause counter wrap negative/unbounded semantics and lead to logic/policy bypass in applications that rely on occurrence-based...

0.0021EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/01/23 12:0 a.m.3 views

CVE-2025-67125

A signed integer overflow in docopt.cpp v0.6.2 LeafPattern::match in docoptprivate.h when merging occurrence counters e.g., default LONGMAX + first user "-v/--verbose" can cause counter wrap negative/unbounded semantics and lead to logic/policy bypass in applications that rely on occurrence-based...

4.4CVSS5.3AI score0.0021EPSS
Exploits1
Rows per page
Query Builder