EUVD-2020-5693

Malware in sbrugna...

EUVD-2022-32914

Malicious code in bioql PyPI...

CVE-2022-28471

In ffjpeg commit hash: caade60, the function bmpload in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfifencode in jfif.c. This is due to the incomplete patch for issue 38...

CVE-2021-45385

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 2021-12-06 in bmpload. When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb-pdata and did not exit the program. So the program crashes when it tries to access the pb-data, i...

CVE-2020-13440

ffjpeg through 2020-02-24 has an invalid write in bmpload in bmp.c...

CVE-2022-28471

In ffjpeg commit hash: caade60, the function bmpload in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfifencode in jfif.c. This is due to the incomplete patch for issue 38...

CVE-2022-28471

In ffjpeg commit hash: caade60, the function bmpload in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfifencode in jfif.c. This is due to the incomplete patch for issue 38...

Integer overflow

In ffjpeg commit hash: caade60, the function bmpload in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfifencode in jfif.c. This is due to the incomplete patch for issue 38...

CVE-2022-28471

In ffjpeg commit hash: caade60, the function bmpload in bmp.c contains an integer overflow vulnerability, which eventually results in the heap overflow in jfifencode in jfif.c. This is due to the incomplete patch for issue 38...

ffjpeg 输入验证错误漏洞

ffjpeg is a JPEG encoder/decoder by the Chinese individual developer Kai Chen. A security vulnerability exists in ffjpeg, which originates from an integer overflow vulnerability in the function bmpload in bmp.c, which ultimately leads to a heap overflow in jfifencode in jfif.c. The vulnerability ...

Null pointer dereference

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 2021-12-06 in bmpload. When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb-pdata and did not exit the program. So the program crashes when it tries to access the pb-data, i...

CVE-2021-45385

A Null Pointer Dereference vulnerability exits in ffjpeg d5cfd49 2021-12-06 in bmpload. When the size information in metadata of the bmp is out of range, it returns without assign memory buffer to pb-pdata and did not exit the program. So the program crashes when it tries to access the pb-data, i...

CVE-2021-45385

Summary (CVE-2021-45385 – ffjpeg) A Null Pointer Dereference affects ffjpeg (revision d5cfd49, 2021-12-06) in bmp_load(). When BMP metadata size is out of range, the code may skip allocating memory to pb->pdata and continue execution, causing a crash when jfif_encode() accesses pb->data (jf...

in rockcarry/ffjpeg

✍️ Description An exploitable heap overflow vulnerability exists in function bmpload in bmp.c. 🕵️‍♂️ Proof of Concept make ./ffjpeg -e poc 💥 Impact This vulnerability is capable of Code execution...

CVE-2020-13440

ffjpeg through 2020-02-24 has an invalid write in bmpload in bmp.c...

Design/Logic Flaw

ffjpeg through 2020-02-24 has an invalid write in bmpload in bmp.c...

CVE-2020-13440

The CVE concerns ffjpeg up to version 2020-02-24, with an invalid write in bmp_load (bmp.c). Affected component is the ffjpeg BMP loader; root cause is a write past allocated memory in bmp_load. Documented impact indicates potential denial of service (CNVD/NVD metrics show Availability impact; CV...

CVE-2020-13440

ffjpeg through 2020-02-24 has an invalid write in bmpload in bmp.c...

CVE-2018-13037

An issue was discovered in jpeg-compressor 0.1. The bmpload function in stbimage.c allows remote attackers to cause a denial of service heap-based buffer overflow and application crash or possibly have unspecified other impact...