Lucene search
K

4 matches found

OSV
OSV
added 2026/05/12 8:54 a.m.9 views

BIT-PILLOW-2026-42309 Pillow: Heap buffer overflow with nested list coordinates

Pillow is a Python imaging library. From version 11.2.1 to before version 12.2.0, passing nested lists as coordinates to APIs that accept coordinates such as ImagePath.Path, ImageDraw.ImageDraw.polygon and ImageDraw.ImageDraw.line could cause a heap buffer overflow, as nested lists were recursive...

5.5CVSS5.8AI score0.00133EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.3 views

SUSE CVE-2019-13222

An out-of-bounds read of a global buffer in the drawline function in stbvorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a crafted Ogg Vorbis file...

7.1CVSS6.7AI score0.00985EPSS
Exploits0References4
CNVD
CNVD
added 2019/08/15 12:0 a.m.4 views

Sean Barrett stb_vorbis buffer overflow vulnerability (CNVD-2019-41485)

Sean Barrett stbvorbis is an open source audio codec for decoding ogg vorbis files. A buffer error vulnerability exists in the 'drawline' function in Sean Barrett stbvorbis 2019-03-04 and earlier versions. The vulnerability stems from a networked system or product performing operations in memory...

7.1CVSS7.3AI score0.00985EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2019/08/15 12:0 a.m.1 views

PT-2019-13189 · Nothinq · Stb Vorbis

Name of the Vulnerable Software and Affected Versions: stb vorbis versions through 2019-03-04 Description: The issue is related to an out-of-bounds read of a global buffer in the draw line function. This can be exploited by opening a crafted Ogg Vorbis file, allowing an attacker to cause a denial...

8.8CVSS6AI score0.02069EPSS
Exploits5References49
Rows per page
Query Builder