Lucene search
K

10 matches found

CVE
CVE
added 2026/06/10 1:4 p.m.64 views

CVE-2025-71329

The CVE-2025-71329 vulnerability affects image-size up to version 2.0.2 and is triggered by a crafted image buffer containing a zero-valued size field in a recognized box-type, causing an infinite loop in the JXL or HEIF parsers and permanently blocking the Node.js event loop (DoS). Impact is den...

8.7CVSS5.8AI score0.0043EPSS
Exploits1References3Affected Software1
Packet Storm News
Packet Storm News
added 2026/04/21 12:0 a.m.12 views

DNG File Fuzzer for Robustness

This Python script is a mutation-based fuzzing tool designed to test the robustness of DNG Digital Negative / TIFF-based file parsers by generating large numbers of corrupted or semi-valid image files. It works by starting from a minimal valid DNG structure, then applying random mutations to...

5.7AI score
Exploits0
OSV
OSV
added 2026/02/23 8:9 p.m.3 views

USN-8057-1 gimp vulnerabilities

Hanno Böck discovered that GIMP allocated FLI images using only the information present in the file header, which allowed for a maliciously- crafted file to cause out-of-bounds writes. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue onl...

7.8CVSS7.5AI score0.01432EPSS
Exploits0References6
OSV
OSV
added 2026/01/17 2:48 a.m.9 views

MGASA-2026-0012 Updated gimp packages fix security vulnerabilities

XWD File Parsing Integer Overflow Remote Code Execution Vulnerability. CVE-2025-2760 FLI File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability. CVE-2025-2761 Multiple heap buffer overflows in tga parser. CVE-2025-48797 Multiple use after free in xcf parser. CVE-2025-48798 XWD File...

7.8CVSS7.8AI score0.0715EPSS
Exploits1References6
ThreatPost
ThreatPost
added 2013/10/10 8:25 a.m.9 views

Google to Pay Rewards For Patches to Open Source Projects

Google, one of the first companies to offer a significant bug bounty program, is extending its rewards to researchers and developers who contribute patches to a variety of open source projects and have an effect on the security of the project. The new rewards will range from $500 to $3,133.70, an...

0.2AI score
Exploits0References3
Amazon
Amazon
added 2013/02/17 12:0 a.m.92 views

Important: java-1.6.0-openjdk

Issue Overview: Multiple improper permission check issues were discovered in the AWT, CORBA, JMX, and Libraries components in OpenJDK. An untrusted Java application or applet could use these flaws to bypass Java sandbox restrictions. Multiple flaws were found in the way image parsers in the 2D an...

10CVSS8.8AI score0.08087EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2013/02/11 12:0 a.m.49 views

CentOS Update for java CESA-2013:0247 centos6

Check for the Version of java OpenVAS Vulnerability Test CentOS Update for java CESA-2013:0247 centos6 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

10CVSS0.4AI score0.89987EPSS
Exploits10References2
Cent OS
Cent OS
added 2013/02/09 11:3 a.m.81 views

java security update

CentOS Errata and Security Advisory CESA-2013:0245 Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring Syste...

10CVSS7AI score0.08087EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2013/02/08 7:6 p.m.63 views

Important: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

10CVSS7AI score0.08087EPSS
Exploits2References22
RedHat Linux
RedHat Linux
added 2013/02/08 7:4 p.m.66 views

Critical: Red Hat Security Advisory: java-1.6.0-openjdk security update

Updated java-1.6.0-openjdk packages that fix several security issues are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

10CVSS7AI score0.08087EPSS
Exploits2References22
Rows per page
Query Builder