CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/10/06 8:15 a.m.•1 views

DEBIAN-CVE-2025-59732

When decoding an OpenEXR file that uses DWAA or DWAB compression, there's an implicit assumption that the height and width are divisible by 8. If the height or width of the image is not divisible by 8, the copy loops at 0 and 1 will continue to write until the next multiple of 8. The buffer...

8.7CVSS5.9AI score0.00021EPSS

NVD•added 2025/10/06 8:15 a.m.•2 views

CVE-2025-59732

8.7CVSS0.00021EPSS

OSV•added 2025/10/06 8:15 a.m.•0 views

UBUNTU-CVE-2025-59731

When decoding an OpenEXR file that uses DWAA or DWAB compression, the specified raw length of run-length-encoded data is not checked when using it to calculate the output data. We read rlerawsize from the input file at 0, we decompress and decode into the buffer td-rlerawdata of size rlerawsize a...

6.9CVSS6.5AI score0.00021EPSS

Exploits0References4

OSV•added 2025/10/06 8:15 a.m.•1 views

UBUNTU-CVE-2025-59732

8.7CVSS6.6AI score0.00021EPSS

Exploits0References4

AlpineLinux•added 2025/10/06 8:9 a.m.•9 views

CVE-2025-59733

8.7CVSS7.3AI score0.00024EPSS

Debian CVE•added 2025/10/06 8:9 a.m.•4 views

CVE-2025-59733

8.7CVSS5.9AI score0.00024EPSS

EUVD•added 2025/10/06 8:9 a.m.•1 views

EUVD-2025-32514

8.7CVSS6.7AI score0.00024EPSS

EUVD•added 2025/10/06 8:9 a.m.•4 views

EUVD-2025-32515

8.7CVSS6.7AI score0.00021EPSS

Cvelist•added 2025/10/06 8:9 a.m.•4 views

CVE-2025-59732 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress

8.7CVSS0.00021EPSS

CVE•added 2025/10/06 8:9 a.m.•10 views

CVE-2025-59732

FFmpeg/OpenEXR vulnerability CVE-2025-59732 arises when decoding DWAA/DWAB-compressed images: if height/width are not multiples of 8, copy loops extend beyond the allocated uncompressed_data, because the buffer is sized to exact dimensions while the loop uses the rounded-up 8-aligned size. This c...

8.7CVSS6.8AI score0.00021EPSS

Vulnrichment•added 2025/10/06 8:9 a.m.•1 views

CVE-2025-59732 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress

8.7CVSS6.8AI score0.00021EPSS

Debian CVE•added 2025/10/06 8:9 a.m.•3 views

CVE-2025-59732

8.7CVSS5.9AI score0.00021EPSS

AlpineLinux•added 2025/10/06 8:9 a.m.•3 views

CVE-2025-59732

8.7CVSS7.2AI score0.00021EPSS

Cvelist•added 2025/10/06 8:9 a.m.•8 views

CVE-2025-59731 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress

6.9CVSS0.00021EPSS

Vulnrichment•added 2025/10/06 8:9 a.m.•1 views

CVE-2025-59731 Heap-buffer-overflow write in FFmpeg EXR dwa_uncompress

6.9CVSS6.6AI score0.00021EPSS

Rockylinux•added 2025/10/04 12:11 a.m.•4 views

ghostscript security update

An update is available for ghostscript. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Ghostscript suite contains utilities for rendering PostScript and PDF...

9.8CVSS8.2AI score0.00255EPSS

OSV•added 2025/10/04 12:11 a.m.•2 views

RLSA-2025:8197 Moderate: unbound security update

The unbound packages provide a validating, recursive, and caching DNS or DNSSEC resolver. Security Fixes: unbound: Unbounded name compression could lead to Denial of Service CVE-2024-8508 For more details about the security issues, including the impact, a CVSS score, acknowledgments, and other...

5.3CVSS6.5AI score0.00216EPSS

OSV•added 2025/10/04 12:11 a.m.•3 views

RLSA-2025:7586 Moderate: ghostscript security update

The Ghostscript suite contains utilities for rendering PostScript and PDF documents. Ghostscript translates PostScript code to common bitmap formats so that the code can be displayed or printed. Security Fixes: Ghostscript: NPDL device: Compression buffer overflow CVE-2025-27832 For more details...

5.5CVSS7.9AI score0.00255EPSS