CVE-2024-34408

Tencent libpag through 4.3.51 has an integer overflow in DecodeStream::checkEndOfFile in codec/utils/DecodeStream.cpp via a crafted PAG Portable Animated Graphics file...

PT-2024-25861 · Tencent · Libpag

Name of the Vulnerable Software and Affected Versions: Tencent libpag versions prior to 4.3.52 Description: The issue is related to an integer overflow in the checkEndOfFile function of DecodeStream.cpp, which can be triggered by a crafted PAG file. Recommendations: For versions prior to 4.3.52,...

Tencent Libpag 安全漏洞

Tencent Libpag is an official rendering library for PAG Portable Animated Graphics files from Tencent, a Chinese company. Tencent Libpag suffers from an integer overflow vulnerability that stems from the DecodeStream checkEndOfFile function in codec/utils/DecodeStream.cpp not correctly handling t...

CVE-2024-34408

Tencent libpag through 4.3.51 has an integer overflow in DecodeStream::checkEndOfFile in codec/utils/DecodeStream.cpp via a crafted PAG Portable Animated Graphics file...

CVE-2024-34408

CVE-2024-34408 affects Tencent’s Libpag up to version 4.3.51. The vulnerability is an integer overflow in DecodeStream::checkEndOfFile() within codec/utils/DecodeStream.cpp triggered by a crafted PAG file. Several connected sources describe the issue and indicate potential code execution; Red Hat...