4 matches found
BIT-PILLOW-2026-42309 Pillow: Heap buffer overflow with nested list coordinates
Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that accept coordinates such as ImagePath.Path, ImageDraw.ImageDraw.polygon and ImageDraw.ImageDraw.line could cause a heap buffer overflow, as nested lists were recursive...
SUSE CVE-2019-13222
An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...
Sean Barrett stb_vorbis buffer overflow vulnerability (CNVD-2019-41485)
Sean Barrett stbvorbis is an open source audio codec for decoding ogg vorbis files. A buffer error vulnerability exists in the 'drawline' function in Sean Barrett stbvorbis 2019-03-04 and earlier versions. The vulnerability stems from a networked system or product performing operations in memory...
PT-2019-13189 · Nothinq · Stb Vorbis
Name of the Vulnerable Software and Affected Versions: stb vorbis versions through 2019-03-04 Description: The issue is related to an out-of-bounds read of a global buffer in the draw line function. This can be exploited by opening a crafted Ogg Vorbis file, allowing an attacker to cause a denial...