Lucene search
K

31 matches found

NVD
NVD
added 2026/06/19 9:17 p.m.11 views

CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS0.00227EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/06/19 8:12 p.m.6 views

CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS5.9AI score0.00227EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/06/19 8:12 p.m.5 views

CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/06/19 8:12 p.m.21 views

CVE-2026-49346 libde265 has a heap buffer overflow in de265_image_get_buffer via SPS dimension integer overflow

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS0.00227EPSS
Exploits1References2
OSV
OSV
added 2026/05/22 3:39 p.m.6 views

CLSA-2026-1778860714 gimp: Fix of 2 CVEs

CVE-2026-4153: fix heap-based buffer overflow in PSP file parser by computing proper linewidth for bit depths 1 and 4 with small widths - CVE-2026-4154: fix integer overflow and buffer overflow in XPM file parser by adding GIMPMAXIMAGESIZE bounds checks and using gtrynew...

7.8CVSS7.3AI score0.00651EPSS
Exploits0References1
OSV
OSV
added 2026/05/19 9:16 p.m.8 views

UBUNTU-CVE-2026-32882

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and prior contain a heap buffer over-read in HeifPixelImage::overlay in libheif/pixelimage.cc. When compositing an overlay image iovl whose child image has a different bit depth for the alpha channel than for the color...

7.1CVSS5.8AI score0.00323EPSS
Exploits0References5
CVE
CVE
added 2026/04/18 1:41 a.m.21 views

CVE-2026-40493

SAIL PSD decoder in LAB mode (3 channels, 16-bit depth) suffers a heap buffer overflow due to a bpp mismatch: bytes-per-pixel is computed as (channelsdepth) but the allocated buffer uses the resolved pixel format (BPP40_CIE_LAB yields 5 bytes/pixel while 3 16 would imply 6). This causes every pix...

9.8CVSS6.1AI score0.00367EPSS
Exploits0References2
Redos
Redos
added 2026/01/13 12:0 a.m.6 views

ROS-20260113-7310

A vulnerability in the resourcebuildbitdepthreductionparams function of the Direct Rendering Infrastructure DRI support driver for AMD graphics cards in the Linux operating system kernel is related to pointer dereference. Exploitation of the vulnerability could allow an attacker to cause a denial...

5.5CVSS6.5AI score0.00236EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2025/11/16 12:0 a.m.1 views

Efficient Adversarial Malware Defense Via Trust-Based Raw Override and Confidence-Adaptive Bit-Depth Reduction

The deployment of robust malware detection systems in big data environments requires careful consideration of both security effectiveness and computational efficiency. While recent advances in adversarial defenses have demonstrated strong robustness improvements, they often introduce computationa...

6.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/05/23 12:0 a.m.10 views

The vulnerability of the resource_build_bit_depth_reduction_params() function in the DRI driver for AMD kernel-based Linux graphics cards allows a attacker to cause a service failure.

The vulnerability of the resourcebuildbitdepthreductionparams function in the Direct Rendering Infrastructure DRI driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References14Affected Software4
SUSE Linux
SUSE Linux
added 2024/12/16 4:43 p.m.3 views

Security update for libaom, libyuv

This update for libaom, libyuv fixes the following issues: libaom was updated to version 3.7.1: Bug Fixes: aomedia:3349: heap overflow when increasing resolution aomedia:3478: GCC 12.2.0 emits a -Wstringop-overflow warning on aom/av1/encoder/motionsearchfacade.c aomedia:3489: Detect encoder and...

7.5CVSS6.4AI score0.01165EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2023/02/15 5:12 a.m.4 views

SUSE CVE-2015-8126

Multiple buffer overflows in the 1 pngsetPLTE and 2 pnggetPLTE functions in libpng before 1.0.64, 1.1.x and 1.2.x before 1.2.54, 1.3.x and 1.4.x before 1.4.17, 1.5.x before 1.5.24, and 1.6.x before 1.6.19 allow remote attackers to cause a denial of service application crash or possibly have...

7.5CVSS9.8AI score0.10339EPSS
Exploits0References40
Microsoft KB
Microsoft KB
added 2018/09/27 12:0 a.m.3 views

January 26, 2017—KB 3216755 (OS Build 14393.726)

January 26, 2017—KB 3216755 OS Build 14393.726 Improvements and fixes This release is only available on the Microsoft Update Catalog website This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include: Addressed a known issu...

6.8AI score
Exploits0
myhack58
myhack58
added 2016/05/21 12:0 a.m.603 views

php imagecreatefrom* functions of the png-vulnerability warning-the black bar safety net

0x00 introduction This article mainly analyzes the php using the GD library imagecreatefrompng function to rebuild the png image may lead to local file inclusion vulnerability. When the system is the existence of the file contains the points, can contain a picture file; in addition the system the...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2016/02/02 1:52 p.m.3 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/02/02 1:39 p.m.4 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.10339EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/02/02 1:39 p.m.3 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.06054EPSS
Exploits0References4
OSV
OSV
added 2016/01/21 3:59 p.m.9 views

AZL-44394 CVE-2015-8472 affecting package fltk for versions less than 1.3.8-1

Buffer overflow in the pngsetPLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x before 1.6.20 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a small...

7.3CVSS7.3AI score0.06054EPSS
Exploits0References1
OSV
OSV
added 2016/01/21 3:59 p.m.4 views

DEBIAN-CVE-2015-8472

Buffer overflow in the pngsetPLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x before 1.6.20 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a small...

7.3CVSS8.3AI score0.06054EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2016/01/21 11:38 a.m.4 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.10339EPSS
Exploits0References4
Rows per page
Query Builder