CVE-2026-42582

Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final, when decoding header blocks, the non-Huffman branch of io.netty.handler.codec.http3.QpackDecoderdecodeHuffmanEncodedLiteral may execute new bytelength for a string literal before verifying that length byt...

GHSA-WRHR-RF8J-R842 ImageMagick: Heap overflow in pcd decoder leads to out of bounds read.

The pcd coder lacks proper boundary checking when processing Huffman-coded data. The decoder contains an function that has an incorrect initialization that could cause an out of bounds read. ==3900053==ERROR: AddressSanitizer: heap-buffer-overflow on address 0x502000003c6c at pc 0x55601b9cc552 bp...

SUSE CVE-2026-26284

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick lacks proper boundary checking when processing Huffman-coded data from PCD Photo CD files. The decoder contains an function that has an incorrect...

CVE-2026-26284

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick lacks proper boundary checking when processing Huffman-coded data from PCD Photo CD files. The decoder contains an function that has an incorrect...

EUVD-2009-0479

Malware in sbrugna...

CVE-2025-0081

CVE-2025-0081 concerns Android where the vulnerability is in dng_lossless_decoder::HuffDecode within dng_lossless_jpeg.cpp. The issue stems from uninitialized data in Huffman decoding, which can crash the process and cause remote denial of service without extra privileges and without user interac...

Internet Bug Bounty: CVE-2020-10938-buffer overflow/out-of-bounds write in compress.c:HuffmanDecodeImage()

Hello, There is an out-of-bounds write that is likely exploitable while performing Huffman decoding of Fax images. The technical details are as follows. Type: integer underflow produces out of bounds heap/etc write Platform: 32-bit Details: 390 MagickExport MagickPassFail HuffmanDecodeImageImage...

DEBIAN-CVE-2017-9110

In OpenEXR 2.2.0, an invalid read of size 2 in the hufDecode function in ImfHuf.cpp could cause the application to crash...

CVE-2009-0475

Integer underflow in the Huffman decoding functionality pvmp3huffmanparsing.cpp in OpenCORE 2.0 and earlier allows remote attackers to cause a denial of service process crash and possibly execute arbitrary code via a crafted MP3 file that triggers heap corruption...

CVE-2009-0475

CVE-2009-0475 describes an integer underflow in the Huffman decoding path (pvmp3_huffman_parsing.cpp) of OpenCORE = 2.0 with that change. Vendor patches were provided by the Android Open Source Project and ocert.org, with references detailing the patch and affected components. Mitigation involves...