Lucene search
K

10 matches found

CNNVD
CNNVD
added 2026/04/26 12:0 a.m.10 views

jiNa OCR Image to Text 安全漏洞

jiNa OCR Image to Text is an open-source tool developed by Convertimagetotext, which supports extracting text from images. Version 1.0 of jiNa OCR Image to Text contains a security vulnerability. This vulnerability arises from a denial-of-service attack when processing deformed PNG files. It may...

6.9CVSS5.8AI score0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/02 12:0 a.m.5 views

PT-2026-6541

Name of the Vulnerable Software and Affected Versions libpng versions prior to 1.6.43-5ubuntu0.4 Description The software does not correctly manage memory when processing specific, intentionally altered PNG files. An attacker could exploit this by tricking a user or automated system into opening ...

5.5CVSS5.8AI score0.00139EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2026/01/16 12:0 a.m.9 views

Ubuntu: Security Advisory (USN-7963-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS5.6AI score0.00299EPSS
Exploits3References2
OSV
OSV
added 2026/01/14 4:45 p.m.6 views

USN-7963-1 libpng1.6 vulnerabilities

It was discovered that the libpng simplified API incorrectly processed palette PNG images with partial transparency and gamma correction. If a user or automated system were tricked into opening a specially crafted PNG file, an attacker could use this issue to cause libpng to crash, resulting in a...

7.8CVSS6.8AI score0.00299EPSS
Exploits3References4
OSV
OSV
added 2024/09/06 11:9 a.m.10 views

OESA-2024-2091 syslinux security update

Security Fixes: The pngformatbuffer function in pngerror.c in libpng 1.0.x before 1.0.55, 1.2.x before 1.2.45, 1.4.x before 1.4.8, and 1.5.x before 1.5.4 allows remote attackers to cause a denial of service application crash via a crafted PNG image that triggers an out-of-bounds read during the...

9.8CVSS9.8AI score0.73164EPSS
Exploits5References14
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.4 views

SUSE CVE-2008-6218

Memory leak in the pnghandletEXt function in pngrutil.c in libpng before 1.2.33 rc02 and 1.4.0 beta36 allows context-dependent attackers to cause a denial of service memory exhaustion via a crafted PNG file...

7.1CVSS6.6AI score0.02313EPSS
Exploits0References4
CNVD
CNVD
added 2018/11/26 12:0 a.m.5 views

Exiv2 Denial of Service Vulnerability (CNVD-2019-00239)

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by software developer Andreas Huggel, which provides for reading and writing image metadata in a variety of formats including EXIF, IPTC and XMP. A security vulnerability exists in the...

6.5CVSS6.6AI score0.02087EPSS
Exploits1References1
RedHat Linux
RedHat Linux
added 2016/07/18 1:51 p.m.4 views

libpng: Buffer overflow vulnerabilities in png_get_PLTE/png_set_PLTE functions

It was discovered that the pnggetPLTE and pngsetPLTE functions of libpng did not correctly calculate the maximum palette sizes for bit depths of less than 8. In case an application tried to use these functions in combination with properly calculated palette sizes, this could lead to a buffer...

7.5CVSS7.8AI score0.10339EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2016/07/18 1:51 p.m.6 views

libpng: Out-of-bounds read in png_convert_to_rfc1123

An array-indexing error was discovered in the pngconverttorfc1123 function of libpng. An attacker could possibly use this flaw to cause an out-of-bounds read by tricking an unsuspecting user into processing a specially crafted PNG image...

5CVSS7.4AI score0.06359EPSS
Exploits1References4
CNVD
CNVD
added 2015/08/08 12:0 a.m.2 views

Foxit Reader PDF Creator plug-in remote code execution vulnerability

Foxit Reader is a popular application for working with PDF files. A vulnerability exists in the handling of specially crafted PNG files by the PDF creator plug-in in Foxit Reader, which can trigger a buffer overflow vulnerability when converted to a PDF file, crashing the application or executing...

7.4AI score
Exploits0References1
Rows per page
Query Builder