jiNa OCR Image to Text 安全漏洞

jiNa OCR Image to Text is an open-source tool developed by Convertimagetotext, which supports extracting text from images. Version 1.0 of jiNa OCR Image to Text contains a security vulnerability. This vulnerability arises from a denial-of-service attack when processing deformed PNG files. It may...

OESA-2024-2091 syslinux security update

Security Fixes: The pngformatbuffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service application crash via a crafted PNG image that triggers an out-of-bounds read during the...

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

Foxit Reader PDF Creator plug-in remote code execution vulnerability

Foxit Reader is a popular application for working with PDF files. A vulnerability exists in the handling of specially crafted PNG files by the PDF creator plug-in in Foxit Reader, which can trigger a buffer overflow vulnerability when converted to a PDF file, crashing the application or executing...