Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 1:57 a.m.8 views

CVE-2023-42447

blurhash-rs is a pure Rust implementation of Blurhash, software for encoding images into ASCII strings that can be turned into a gradient of colors representing the original image. In version 0.1.1, the blurhash parsing code may panic due to multiple panic-guarded out-of-bounds accesses on...

8.6CVSS7AI score0.00515EPSS
Exploits0References1
vulnersOsv
vulnersOsv
added 2023/09/21 5:10 p.m.4 views

blurhash-cli (>=0.1.0 <=0.1.1), yozuk-core-skillset (>=0.16.3 <=0.22.11) +1 more potentially affected by CVE-2023-42447 via blurhash (=0.1.1)

blurhash CARGO version =0.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on blurhash and may be impacted: - blurhash-cli =0.1.0, =0.16.3, =0.16.0, =0.22.11 Source cves: CVE-2023-42447 Source advisory: OSV:GHSA-CXVP-82CQ-57H2...

8.6CVSS7.1AI score0.00515EPSS
Exploits0
Cvelist
Cvelist
added 2023/09/19 2:57 p.m.37 views

CVE-2023-42447 blurhash panics on parsing crafted inputs

blurhash-rs is a pure Rust implementation of Blurhash, software for encoding images into ASCII strings that can be turned into a gradient of colors representing the original image. In version 0.1.1, the blurhash parsing code may panic due to multiple panic-guarded out-of-bounds accesses on...

8.6CVSS8.8AI score0.00515EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/19 2:57 p.m.13 views

CVE-2023-42447 blurhash panics on parsing crafted inputs

blurhash-rs is a pure Rust implementation of Blurhash, software for encoding images into ASCII strings that can be turned into a gradient of colors representing the original image. In version 0.1.1, the blurhash parsing code may panic due to multiple panic-guarded out-of-bounds accesses on...

8.6CVSS6.9AI score0.00515EPSS
Exploits0References1
CVE
CVE
added 2023/09/19 2:57 p.m.78 views

CVE-2023-42447

CVE-2023-42447 affects blurhash-rs, a Rust implementation of Blurhash. The vulnerability arises in the 0.1.1 parsing code, which may panic due to multiple panic-guarded out-of-bounds accesses on untrusted input (including UTF-8 multi-byte characters) fed over the network. In practice, this could ...

8.6CVSS8AI score0.00515EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder