Lucene search
K

54419 matches found

EUVD
EUVD
added 2026/02/27 3:30 a.m.10 views

EUVD-2026-8991

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

4.8CVSS4.6AI score0.00214EPSS
Exploits2References9
OSV
OSV
added 2026/02/27 3:16 a.m.5 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS5.7AI score
Exploits0References8
NVD
NVD
added 2026/02/27 3:16 a.m.8 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS0.00214EPSS
Exploits2References8
OSV
OSV
added 2026/02/27 3:16 a.m.7 views

DEBIAN-CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS4.3AI score0.00214EPSS
Exploits2References1
OSV
OSV
added 2026/02/27 3:16 a.m.9 views

UBUNTU-CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS5.6AI score0.00214EPSS
Exploits2References10
ATTACKERKB
ATTACKERKB
added 2026/02/27 3:2 a.m.4 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS5.5AI score0.00214EPSS
Exploits2References8
Vulnrichment
Vulnrichment
added 2026/02/27 3:2 a.m.4 views

CVE-2026-3284 libvips extract.c vips_extract_area_build integer overflow

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

4.8CVSS5.8AI score0.00214EPSS
Exploits2References8
CVE
CVE
added 2026/02/27 3:2 a.m.17 views

CVE-2026-3284

The CVE concerns libvips 8.19.0 where the function vips_extract_area_build in libvips/conversion/extract.c is vulnerable to an integer overflow when manipulating the extract_area argument. This vulnerability can be triggered via a local attack, and public exploits have been reported. A patch is i...

5.5CVSS4.8AI score0.00214EPSS
Exploits2References8Affected Software1
Cvelist
Cvelist
added 2026/02/27 3:2 a.m.26 views

CVE-2026-3284 libvips extract.c vips_extract_area_build integer overflow

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

4.8CVSS0.00214EPSS
Exploits2References8
Debian CVE
Debian CVE
added 2026/02/27 3:2 a.m.7 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS4.3AI score0.00214EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2026/02/27 12:0 a.m.6 views

PT-2026-22391

Name of the Vulnerable Software and Affected Versions pillow heif versions prior to 1.3.0 Description An integer overflow in the encode path buffer validation within pillow heif.c allows an attacker to bypass bounds checks by providing large image dimensions. This can lead to a heap out-of-bounds...

6.9CVSS6.1AI score0.00632EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2026/02/27 12:0 a.m.4 views

CVE-2026-3284

A vulnerability was found in libvips 8.19.0. Impacted is the function vipsextractareabuild of the file libvips/conversion/extract.c. The manipulation of the argument extractarea results in integer overflow. The attack requires a local approach. The exploit has been made public and could be used...

5.5CVSS5.6AI score0.00214EPSS
Exploits2References9
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.8 views

pillow-heif 输入验证错误漏洞

Pillow-Heif is a Python library and Pillow plugin developed by Alexander Piskun for processing HEIF images. Versions of Pillow-Heif prior to 1.3.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows that bypassed boundary checks,...

9.1CVSS5.8AI score0.00632EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/27 12:0 a.m.5 views

PT-2026-22288

A vulnerability was found in libvips 8.19.0. Impacted is the function vips extract area build of the file libvips/conversion/extract.c. The manipulation of the argument extract area results in integer overflow. The attack requires a local approach. The exploit has been made public and could be...

4.8CVSS4.7AI score0.00214EPSS
Exploits2References9
CNNVD
CNNVD
added 2026/02/27 12:0 a.m.9 views

libvips 输入验证错误漏洞

libvips is an open-source fast image processing library with low memory requirements. Version 8.19.0 of libvips contains a vulnerability related to input validation errors. This vulnerability stems from incorrect handling of the extractarea parameter in the function vipsextractareabuild located i...

5.5CVSS5.8AI score0.00214EPSS
Exploits2References8
OSV
OSV
added 2026/02/26 11:1 p.m.8 views

CLSA-2026-1771855171 glib2: Fix of CVE-2025-14087

CVE-2025-14087: fix integer overflow in GVariant parser leading to heap corruption via buffer underflow when processing malicious input strings...

9.8CVSS6AI score0.00754EPSS
Exploits0References1
OSV
OSV
added 2026/02/26 8:47 p.m.6 views

RLSA-2026:3361 Important: firefox security update

Mozilla Firefox is an open-source web browser, designed for standards compliance, performance, and portability. Security Fixes: libvpx: Heap buffer overflow in libvpx CVE-2026-2447 firefox: Invalid pointer in the JavaScript Engine component CVE-2026-2785 firefox: Memory safety bugs fixed in Firef...

7.5CVSS5.9AI score0.00604EPSS
Exploits0References39
Rockylinux
Rockylinux
added 2026/02/26 8:45 p.m.7 views

firefox security update

An update is available for firefox. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Mozilla Firefox is an open-source web browser, designed for standards...

10CVSS6AI score0.00604EPSS
Exploits0
Debian
Debian
added 2026/02/26 7:46 p.m.10 views

[SECURITY] [DSA 6149-1] nss security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6149-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff February 26, 2026 https://www.debian.org/security/faq -...

9.8CVSS5.8AI score0.0036EPSS
Exploits0
OSV
OSV
added 2026/02/26 3:34 p.m.7 views

CLSA-2026-1772120065 php: Fix of CVE-2017-8923

CVE-2017-8923: fix integer overflow when concatenating strings...

9.8CVSS6.8AI score0.07191EPSS
Exploits1References1
Rows per page
Query Builder