Lucene search
+L

4 matches found

ArchLinux
ArchLinux
added 2021/03/25 12:0 a.m.186 views

[ASA-202103-26] godot: arbitrary code execution

Arch Linux Security Advisory ASA-202103-26 ========================================== Severity: Medium Date : 2021-03-25 CVE-ID : CVE-2021-26825 CVE-2021-26826 Package : godot Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1544 Summary ======= The package...

7.8CVSS0.9AI score0.01505EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2021/02/08 3:15 p.m.30 views

CVE-2021-26825

An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...

7.8CVSS7.6AI score0.01505EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2021/02/08 2:58 p.m.23 views

CVE-2021-26825

An integer overflow issue exists in Godot Engine up to v3.2 that can be triggered when loading specially crafted.TGA image files. The vulnerability exists in ImageLoaderTGA::loadimage function at line: const sizet buffersize = tgaheader.imagewidth tgaheader.imageheight pixelsize; The bug leads to...

7.8CVSS7.8AI score0.01505EPSS
Exploits0
CVE
CVE
added 2021/02/08 2:58 p.m.64 views

CVE-2021-26825

CVE-2021-26825 affects Godot Engine up to v3.2. The vulnerability is in ImageLoaderTGA::load_image(), where the buffer_size is computed as (tga_header.image_width * tga_header.image_height) * pixel_size, causing a dynamic stack buffer overflow. Impact: potential code execution and/or crash, with ...

7.8CVSS7.8AI score0.01505EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder