2 matches found
CVE-2026-20973
Out-of-bounds read in libimagecodec.quram.so prior to SMR Jan-2026 Release 1 allows remote attacker to access out-of-bounds memory...
CVE-2025-21074
CVE-2025-21074 affects the Quram DNG parser in libimagecodec.quram.so. The root cause is flawed bounds validation on the TrimBounds opcode, leading to out-of-bounds reads on heap-allocated image buffers. Reported impact includes remote crashes, ASLR information leakage, and, per a PacketStorm wri...