GHSA-5GGV-92R5-CP4P ImageMagick has Heap Buffer Overflow in WaveletDenoiseImage

A crafted image could cause an out of bounds heap write inside the WaveletDenoiseImage method. When processing a crafted image with the -wavelet-denoise operation an out of bounds write can occur. ================================================================= ==661320==ERROR: AddressSanitizer:...

EUVD-2026-7420

ImageMagick has heap buffer overflow in YUV 4:2:2 decoder...

Google Chrome < 98.0.4758.82 Multiple Vulnerabilities

The version of Google Chrome installed on the remote Windows host is prior to 98.0.4758.82. It is, therefore, affected by multiple vulnerabilities as referenced in the 202202stable-channel-update-for-desktop advisory. - Out of bounds memory access in V8 in Google Chrome prior to 98.0.4758.80...

Linux Distros Unpatched Vulnerability : CVE-2015-1273

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in j2k.c in OpenJPEG before r3002, as used in PDFium in Google Chrome before 44.0.2403.89, allows remote attackers to cause a denial ...

QuickJS 安全漏洞

QuickJS is a small and embeddable Javascript engine open-sourced by QuickJS. A security vulnerability exists in QuickJS 0.9.0 and earlier versions, which stems from a BigInt size miscalculation in JSReadBigInt, which could lead to a heap-based buffer overflow...

CVE-2023-29994

In NanoMQ v0.15.0-0, Heap overflow occurs in readbyte function of mqttcode.c...

PT-2023-12030 · Imagination Technologies +1 · Powervr +1

Name of the Vulnerable Software and Affected Versions: Android SoC versions affected versions not specified Description: A missing size check in the PowerVR kernel driver's PVRSRVBridgePhysmemImportSparseDmaBuf function could lead to an integer overflow, allowing out-of-bounds heap access. This...

SUSE CVE-2017-5508

Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service application crash via a crafted TIFF file...

CVE-2022-41838

A code execution vulnerability exists in the DDS scanline parsing functionality of OpenImageIO Project OpenImageIO v2.4.4.2. A specially-crafted .dds can lead to a heap buffer overflow. An attacker can provide a malicious file to trigger this vulnerability...

CVE-2022-41430

Bento4 v1.6.0-639 was discovered to contain a heap overflow via the AP4BitReader::ReadBit function in mp4mux...

CVE-2022-21740

Tensorflow is an Open Source Machine Learning Framework. The implementation of SparseCountSparseOutput is vulnerable to a heap overflow. The fix will be included in TensorFlow 2.8.0. We will also cherrypick this commit on TensorFlow 2.7.1, TensorFlow 2.6.3, and TensorFlow 2.5.3, as these are also...

CVE-2021-36531

ngiflib 0.4 has a heap overflow in GetByte at ngiflib.c:70 in NGIFLIBNOFILE mode, GetByte reads memory buffer without checking the boundary...

PT-2021-21766 · Google · Tensorflow

Name of the Vulnerable Software and Affected Versions: TensorFlow versions prior to 2.6.0 TensorFlow versions 2.5.1 and earlier TensorFlow versions 2.4.3 and earlier TensorFlow versions 2.3.4 and earlier Description: The implementation for tf.raw ops.ExperimentalDatasetToTFRecord and tf.raw...

UBUNTU-CVE-2020-15306

An issue was discovered in OpenEXR before v2.5.2. Invalid chunkCount attributes could cause a heap buffer overflow in getChunkOffsetTableSize in IlmImf/ImfMisc.cpp...

Scientific Linux Security Update : openjpeg2 on SL7.x x86_64 (20200219)

Security Fixes : - openjpeg: heap-based buffer overflow in pjt1clbldecodeprocessor in openjp2/t1.c CVE-2020-8112 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid133826; scriptversion"1.3";...

Exiv2 heap buffer overflow vulnerability (CNVD-2019-24854)

Exiv2 is a set of C++ libraries and command line applications for managing image metadata by Andreas Huggel programmers. The product provides the ability to read and write image metadata in a variety of formats including EXIF, IPTC and XMP. A buffer overflow vulnerability exists in the...

CVE-2018-1000876

binutils version 2.32 and earlier contains a Integer Overflow vulnerability in objdump, bfdgetdynamicrelocupperbound,bfdcanonicalizedynamicreloc that can result in Integer overflow trigger heap overflow. Successful exploitation allows execution of arbitrary code.. This attack appear to be...

Heap overflow

In all android releasesAndroid for MSM, Firefox OS for MSM, QRD Android from CAF using the linux kernel, existing checks in place on partition size are incomplete and can lead to heap overwrite vulnerabilities while loading a secure application from the boot loader...

Heap overflow

The wavconvert2mono function in lib/wav.c in SWFTools 0.9.2 does not properly validate WAV data, which allows remote attackers to cause a denial of service incorrect malloc and heap-based buffer overflow or possibly have unspecified other impact via a crafted file...

CVE-2017-12603

OpenCV Open Source Computer Vision Library through 3.3 has an invalid write in the cv::RLByteStream::getBytes function in modules/imgcodecs/src/bitstrm.cpp when reading an image file by using cv::imread, as demonstrated by the 2-opencv-heapoverflow-fseek test case...