Lucene search
+L

90 matches found

euvd
euvd
added 2026/07/08 7:36 a.m.7 views

EUVD-2026-42201

An abnormal image object causes the renderer to enter the wrong processing branch. When converting the scan lines, an invalid image buffer pointer is used, resulting in the application crashing...

6.1CVSS6.1AI score0.00107EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/07/08 7:36 a.m.6 views

CVE-2026-57253

An abnormal image object causes the renderer to enter the wrong processing branch. When converting the scan lines, an invalid image buffer pointer is used, resulting in the application crashing...

6.1CVSS6.1AI score0.00107EPSS
Exploits0References2Affected Software2
cvelist
cvelist
added 2026/06/19 8:12 p.m.27 views

CVE-2026-49346 libde265 has a heap buffer overflow in de265_image_get_buffer via SPS dimension integer overflow

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS0.00227EPSS
Exploits1References2
osv
osv
added 2026/06/19 8:12 p.m.3 views

CVE-2026-49346 libde265 has a heap buffer overflow in de265_image_get_buffer via SPS dimension integer overflow

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS6AI score0.00227EPSS
Exploits1References4
cve
cve
added 2026/06/19 8:12 p.m.27 views

CVE-2026-49346

CVE-2026-49346 affects libde265 up to version 1.0.x; a crafted H.265 bitstream with large SPS dimensions and 16-bit depth triggers a signed integer overflow in de265_image_get_buffer(), causing an undersized allocation (~1 KB) but later writing ~4 GB due to size_t math in fill_image. This is fixe...

7.1CVSS5.9AI score0.00227EPSS
Exploits1References2Affected Software1
alpinelinux
alpinelinux
added 2026/06/19 8:12 p.m.7 views

CVE-2026-49346

libde265 is an open source implementation of the h.265 video codec. Prior to version 1.1.0, a crafted H.265 bitstream with large SPS dimensions and 16-bit bit depth causes a signed integer overflow in de265imagegetbuffer libde265/image.cc:128. The overflow wraps the plane allocation size to a sma...

7.1CVSS5.8AI score0.00227EPSS
Exploits1References2
redhatcve
redhatcve
added 2026/05/15 8:41 a.m.11 views

CVE-2026-44637

A flaw was found in libsixel, a SIXEL encoder/decoder implementation. A remote attacker, by providing specially crafted SIXEL data, can trigger a signed integer overflow in the SIXEL parser's image-buffer doubling loop. This overflow can bypass size checks and lead to an out-of-bounds heap write...

7.1CVSS5.8AI score0.0016EPSS
Exploits1References2
nessus
nessus
added 2026/05/15 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-44637

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer...

7.1CVSS6.2AI score0.0016EPSS
Exploits1References3
nvd
nvd
added 2026/05/14 8:17 p.m.12 views

CVE-2026-44637

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS0.0016EPSS
Exploits1References1
osv
osv
added 2026/05/14 8:17 p.m.9 views

DEBIAN-CVE-2026-44637

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6AI score0.0016EPSS
Exploits1References1
cvelist
cvelist
added 2026/05/14 8:2 p.m.35 views

CVE-2026-44637 libsixel: integer overflow in parser

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS0.0016EPSS
Exploits1References1
euvd
euvd
added 2026/05/14 8:2 p.m.12 views

EUVD-2026-30412

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6AI score0.0016EPSS
Exploits1References1
debiancve
debiancve
added 2026/05/14 8:2 p.m.11 views

CVE-2026-44637

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6AI score0.0016EPSS
Exploits1
cve
cve
added 2026/05/14 8:2 p.m.23 views

CVE-2026-44637

CVE-2026-44637 affects libsixel (SIXEL encoder/decoder). A signed integer overflow in the parser’s image-buffer doubling loop (sixel_decode_raw_impl) occurs as context->pos_x is incremented by repeat_count with no upper bound check. When pos_x nears INT_MAX, pos_x + repeat_count overflows sign...

7.1CVSS6AI score0.0016EPSS
Exploits1References1Affected Software1
osv
osv
added 2026/05/14 8:2 p.m.3 views

CVE-2026-44637 libsixel: integer overflow in parser

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a signed integer overflow in the SIXEL parser's image-buffer doubling loop can lead to an out-of-bounds heap write in sixeldecoderawimpl. context-posx grows by repeatcount on every sixel character wit...

7.1CVSS6.1AI score0.0016EPSS
Exploits1References3
cvelist
cvelist
added 2026/04/09 2:42 p.m.24 views

CVE-2026-5444 Heap Buffer Overflow in PAM Image Buffer Allocation

A heap buffer overflow vulnerability exists in the PAM image parsing logic. When Orthanc processes a crafted PAM image embedded in a DICOM file, image dimensions are multiplied using 32-bit unsigned arithmetic. Specially chosen values can cause an integer overflow during buffer size calculation,...

0.00162EPSS
Exploits0References3
euvd
euvd
added 2026/02/25 8:32 p.m.6 views

EUVD-2026-8735

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...

6.9CVSS5.4AI score0.00498EPSS
Exploits1References6
redhatcve
redhatcve
added 2026/01/09 12:24 p.m.7 views

CVE-2018-14072

libsixel 1.8.1 has a memory leak in sixeldecoderdecode in decoder.c, imagebufferresize in fromsixel.c, and sixeldecoderaw in fromsixel.c...

7.5CVSS6.8AI score0.01411EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/01/09 10:5 a.m.6 views

CVE-2019-20024

A heap-based buffer overflow was discovered in imagebufferresize in fromsixel.c in libsixel before 1.8.4...

6.5CVSS7.3AI score0.01002EPSS
Exploits1References1
osv
osv
added 2025/12/19 7:16 a.m.4 views

CVE-2025-66499

A heap-based buffer overflow vulnerability exists in the PDF parsing of Foxit PDF Reader when processing specially crafted JBIG2 data. An integer overflow in the calculation of the image buffer size may occur, potentially allowing a remote attacker to execute arbitrary code...

7.8CVSS6.3AI score0.00252EPSS
Exploits0References1
Rows per page
Query Builder