Lucene search
K

360 matches found

Fedora
Fedora
added 2026/06/24 1:33 a.m.6 views

[SECURITY] Fedora 43 Update: materialx-1.39.5-1.fc43

Physically-based material interchange specification for 3D rendering workflow s...

3.7CVSS5.8AI score0.002EPSS
Exploits2
Fedora
Fedora
added 2026/06/24 1:31 a.m.5 views

[SECURITY] Fedora 44 Update: materialx-1.39.5-1.fc44

Physically-based material interchange specification for 3D rendering workflow s...

3.7CVSS5.8AI score0.002EPSS
Exploits2
Fedora
Fedora
added 2026/06/21 1:1 a.m.6 views

[SECURITY] Fedora 44 Update: mingw-SDL2_image-2.8.12-1.fc44

Simple DirectMedia Layer SDL2 is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This package contains a simple library for loading images of various formats BMP, PPM, PCX, GIF, JPEG, PNG as SDL2 surfaces...

7.1CVSS5.9AI score0.00262EPSS
Exploits0
NVD
NVD
added 2026/06/15 6:16 p.m.17 views

CVE-2026-6039

LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a DXF polyline. The point count taken from the file was truncated to a 16-bit value when the point buffer was sized, while the full count was used to fill it, so a polyline whose...

6.9CVSS0.00157EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/06/15 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-6039

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a DXF polyline. The point count taken from...

6.9CVSS6.2AI score0.00157EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.12 views

PT-2026-49262

LibreOffice can import drawings in the DXF format used by CAD software. A heap buffer overflow existed when importing a DXF polyline. The point count taken from the file was truncated to a 16-bit value when the point buffer was sized, while the full count was used to fill it, so a polyline whose...

6.9CVSS5.6AI score0.00157EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in hdf5

There is an out-of-bounds read vulnerability in the gif2h5 functionality of HDF5 Group libhdf5 1.10.4. A specially crafted GIF file can lead to code execution. An attacker can provide a malicious file to exploit this vulnerability...

7.8CVSS7.5AI score0.00577EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/05/15 12:0 a.m.12 views

PT-2026-41299

Name of the Vulnerable Software and Affected Versions Imager versions prior to 1.031 Description Imager for Perl allows a heap out of bounds OOB write—a memory corruption where data is written outside the boundaries of an allocated heap buffer—when processing crafted multi-frame GIF files. The i...

6.5CVSS5.9AI score0.00321EPSS
Exploits0References7
CNNVD
CNNVD
added 2026/05/15 12:0 a.m.12 views

Imager 缓冲区错误漏洞

Imager is an image processing program developed by Tony Cook personally. Versions of Imager 1.030 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the ireadgifmultilow function in Imager::File::GIF, which allocates a single buffer for each line of data. The size...

6.5CVSS6.1AI score0.00321EPSS
Exploits0References1
Fedora
Fedora
added 2026/05/11 1:3 a.m.12 views

[SECURITY] Fedora 43 Update: SDL3_image-3.4.4-1.fc43

Simple DirectMedia Layer SDL is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. This is a simple library to load images of various formats as SDL surfaces. It can load BMP, GIF, JPEG, LBM, PCX, PNG, PNM PPM/PGM/PBM, QOI, TGA, XCF,...

7.1CVSS5.9AI score0.00262EPSS
Exploits0
Fedora
Fedora
added 2026/04/25 1:55 a.m.9 views

[SECURITY] Fedora 44 Update: usd-26.03-3.fc44

Universal Scene Description USD is a time-sampled scene description for interchange between graphics applications...

8.8CVSS5.2AI score0.00482EPSS
Exploits6
RedHat Linux
RedHat Linux
added 2026/04/24 10:14 a.m.24 views

giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension

A flaw was found in giflib. A remote attacker can exploit a buffer overflow vulnerability in the EGifGCBToExtension function by providing a specially crafted Graphics Control Extension GCE block. This allows overwriting an existing GCE block without proper size validation, leading to a denial of...

8.2CVSS6AI score0.00618EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/04/17 12:4 p.m.6 views

SUSE CVE-2026-6384

A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsImage function allows an attacker to write beyond an allocated buffer by processing a specially crafted GIF file. This can lead to a denial of service or potentially arbitrary code execution...

7.3CVSS6.3AI score0.00261EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/15 7:9 p.m.6 views

CVE-2026-6384

A flaw was found in gimp. This buffer overflow vulnerability in the GIF image loading component's ReadJeffsImage function allows an attacker to write beyond an allocated buffer by processing a specially crafted GIF file. This can lead to a denial of service or potentially arbitrary code execution...

7.8CVSS6.1AI score0.00261EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/14 9:45 p.m.5 views

EUVD-2026-22740

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. Versions 1.8.7 and prior contain a Use-After-Free vulnerability via the loadgif function in fromgif.c, where a single sixelframet object is reused across all frames of an animated GIF and gifinitframe unconditionally...

7CVSS5.8AI score0.00191EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/04/13 2:31 a.m.6 views

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

7.8CVSS7.5AI score0.00867EPSS
Exploits0References6
Fedora
Fedora
added 2026/04/10 1:11 a.m.7 views

[SECURITY] Fedora 42 Update: libcgif-0.5.3-1.fc42

A fast and lightweight GIF encoder that can create GIF animations and images. Summary of the main features: - user-defined global or local color-palette with up to 256 colors limit of the GIF format - size-optimizations for GIF animations: - option to set a pixel to transparent if it has identica...

5.3CVSS5.8AI score0.00492EPSS
Exploits0
Snyk
Snyk
added 2026/04/01 9:30 p.m.5 views

Improper Resource Shutdown or Release

Overview Affected versions of this package are vulnerable to Improper Resource Shutdown or Release via the stbigifloadnext function. An attacker can cause the application to become unavailable by enticing a user to open a specially crafted GIF image. This is only exploitable if a user interacts...

5.3CVSS5.9AI score0.00286EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/03/31 7:50 p.m.2 views

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

7.8CVSS7.5AI score0.00867EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/31 1:11 p.m.4 views

GStreamer: GStreamer: Arbitrary code execution via RIFF palette integer overflow in AVI file handling

A flaw was found in GStreamer. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. The flaw exists within the handling of palette data in AVI files, where a lack of proper validation of user-supplied data can lead to an integer overflow...

7.8CVSS7.5AI score0.00867EPSS
Exploits0References6
Rows per page
Query Builder