CVE-2026-42146

CImg Library is a C++ library for image processing. Prior to commit c3aacf5, the nbcolors field read from the BMP file header is used directly to compute an allocation size without validating it against the remaining file size. A crafted BMP file with a large nbcolors value triggers an...

📄 HTMLDOC 1.9.13 Stack Buffer Overflow

Proof of concept exploit written in PHP for HTMLDOC version 1.9.13 that generates a malicious BMP file that will trigger a stack buffer overflow vulnerability...

EUVD-2007-2558

Malware in sbrugna...

EUVD-2012-1225

Malware in sbrugna...

EUVD-2016-6270

Malware in sbrugna...

EUVD-2017-14943

Malware in sbrugna...

EUVD-2019-14693

Malware in sbrugna...

EUVD-2021-21550

Malware in sbrugna...

EUVD-2021-20334

Malware in sbrugna...

EUVD-2021-16001

Malware in sbrugna...

EUVD-2015-8726

Malware in sbrugna...

EUVD-2015-8449

Malware in sbrugna...

EUVD-2022-26399

Malicious code in bioql PyPI...

EUVD-2021-31263

Malicious code in bioql PyPI...

EUVD-2021-31264

Malicious code in bioql PyPI...

EUVD-2021-30494

Malicious code in bioql PyPI...

EUVD-2021-8735

Malicious code in bioql PyPI...

EUVD-2022-24653

Malicious code in bioql PyPI...

CVE-2025-52930

A memory corruption vulnerability exists in the BMPv3 RLE Decoding functionality of the SAIL Image Decoding Library v0.9.8. When decompressing the image data from a specially crafted .bmp file, a heap-based buffer overflow can occur which allows for remote code execution. An attacker will need to...

CVE-2021-44422

An Improper Input Validation Vulnerability exists when reading a BMP file using Open Design Alliance Drawings SDK before 2022.12. Crafted data in a BMP file can trigger a write operation past the end of an allocated buffer, or lead to a heap-based buffer overflow. An attacker can leverage this...