10 matches found
jiNa OCR Image to Text 安全漏洞
jiNa OCR Image to Text is an open-source tool developed by Convertimagetotext, which supports extracting text from images. Version 1.0 of jiNa OCR Image to Text contains a security vulnerability. This vulnerability arises from a denial-of-service attack when processing deformed PNG files. It may...
PT-2026-6541
Name of the Vulnerable Software and Affected Versions libpng versions prior to 1.6.43-5ubuntu0.4 Description The software does not correctly manage memory when processing specific, intentionally altered PNG files. An attacker could exploit this by tricking a user or automated system into opening ...
Ubuntu: Security Advisory (USN-7963-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
USN-7963-1 libpng1.6 vulnerabilities
It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma correction. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a...
OESA-2024-2091 syslinux security update
Security Fixes: The pngformatbuffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service application crash via a crafted PNG image that triggers an out-of-bounds read during the...
SUSE CVE-2008-6218
Memory leak in the pnghandletEXt function in pngrutil.c in libpng before 1.2.33 rc02 and 1.4.0 beta36 allows context-dependent attackers to cause a denial of service memory exhaustion via a crafted PNG file...
Exiv2 Denial of Service Vulnerability (CNVD-2019-00239)
Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides for reading and writing image metadata in a variety of formats including EXIF, IPTC and XMP. A security vulnerability exists in the...
libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions
It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...
libpng: Out-of-bounds read in png_convert_to_rfc1123
An array-indexing error was discovered in the pngconverttorfc1123 function of libpng. An attacker could possibly use this flaw to cause an out-of-bounds read by tricking an unsuspecting user into processing a specially crafted PNG image...
Foxit Reader PDF Creator plug-in remote code execution vulnerability
Foxit Reader is a popular application for working with PDF files. A vulnerability exists in the handling of specially crafted PNG files by the PDF creator plug-in in Foxit Reader, which can trigger a buffer overflow vulnerability when converted to a PDF file, crashing the application or executing...