Lucene search
K

53 matches found

OSV
OSV
added 2025/09/15 9:19 a.m.2 views

SUSE-SU-2025:03219-1 Security update for jasper

This update for jasper fixes the following issues: - CVE-2025-8835: missing range check in the JPEG-2000 JPC Encoder leads to assertion failure and crash when processing a malformed JPEG2000 image with an invalid cblkwidth parameter bsc1247904. - CVE-2025-8836: out-of-bounds array indexing in...

7.8CVSS5.9AI score0.00221EPSS
Exploits3References7
Cvelist
Cvelist
added 2025/06/18 11:3 a.m.18 views

CVE-2022-50182 media: imx-jpeg: Align upwards buffer size

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Align upwards buffer size The hardware can support any image size WxH, with arbitrary W image width and H image height dimensions. Align upwards buffer size for both encoder and decoder. and leave the picture...

0.00207EPSS
Exploits0References4
NVD
NVD
added 2024/11/04 10:15 a.m.24 views

CVE-2024-38406

Memory corruption while handling IOCTL calls in JPEG Encoder driver...

7.8CVSS0.00075EPSS
Exploits0References1
NVD
NVD
added 2024/11/04 10:15 a.m.21 views

CVE-2024-38407

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver...

7.8CVSS0.00075EPSS
Exploits0References1
CVE
CVE
added 2024/11/04 10:4 a.m.59 views

CVE-2024-38407

CVE-2024-38407 describes a memory corruption vulnerability in the JPEG Encoder driver triggered by processing input parameters for any IOCTL call. The issue is local in scope with high impact to confidentiality, integrity, and availability per CVSS metrics (AV:L, AC:H/L, PR:L, UI:N, S:U, C/H/I/H/...

7.8CVSS7.5AI score0.00075EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/11/04 10:4 a.m.14 views

CVE-2024-38407 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption while processing input parameters for any IOCTL call in the JPEG Encoder driver...

7.8CVSS7.4AI score0.00075EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/04 10:4 a.m.24 views

CVE-2024-38406 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption while handling IOCTL calls in JPEG Encoder driver...

7.8CVSS0.00075EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/11/04 10:4 a.m.13 views

CVE-2024-38406 Time-of-check Time-of-use (TOCTOU) Race Condition in Camera

Memory corruption while handling IOCTL calls in JPEG Encoder driver...

7.8CVSS7.4AI score0.00075EPSS
Exploits0References1
CVE
CVE
added 2024/11/04 10:4 a.m.66 views

CVE-2024-38406

CVE-2024-38406 affects Qualcomm chipsets and is described as memory corruption when handling IOCTL calls in the JPEG Encoder driver. The NVD entry lists local access with high impact to confidentiality, integrity, and availability, with exploitation status not provided. Other connected records re...

7.8CVSS7.4AI score0.00075EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/11/04 12:0 a.m.9 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption that occurs when processing the input parameters of any IOCTL call in the JPEG Encoder driver...

7.8CVSS6.9AI score0.00075EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/11/04 12:0 a.m.8 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that originates from a memory corruption when processing IOCTL calls in the JPEG Encoder driver...

7.8CVSS6.9AI score0.00075EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/04 12:0 a.m.9 views

PT-2024-27986 · Unknown · Jpeg Encoder Driver

Name of the Vulnerable Software and Affected Versions: JPEG Encoder driver affected versions not specified Description: The issue is related to memory corruption that occurs while processing input parameters for any IOCTL call in the JPEG Encoder driver. This problem can lead to memory corruption...

7.8CVSS7AI score0.00075EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/10/02 12:0 a.m.5 views

PT-2024-40590 · Git +1 · Libultrahdr

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a crash caused by the use of an uninitialized value. The crash occurs in the format message function, which is called by...

6.9AI score
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2024/04/25 12:0 a.m.6 views

The vulnerability of the JpegEncoder::Encode function in the file format decoders and encoders of the libheif library allows a attacker to cause a service failure.

The vulnerability of the JpegEncoder::Encode function in file format decoders and encoders of the libheif library is related to a memory leak. Exploiting this vulnerability could allow an attacker to cause service interruptions...

7.8CVSS6.9AI score0.00687EPSS
Exploits1References4Affected Software3
OSV
OSV
added 2024/03/05 1:15 a.m.4 views

DEBIAN-CVE-2024-25269

libheif = 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack...

7.5CVSS6.9AI score0.00687EPSS
Exploits1References1
OSV
OSV
added 2024/03/05 1:15 a.m.10 views

UBUNTU-CVE-2024-25269

libheif = 1.17.6 contains a memory leak in the function JpegEncoder::Encode. This flaw allows an attacker to cause a denial of service attack...

7.5CVSS7.3AI score0.00687EPSS
Exploits1References4
CNNVD
CNNVD
added 2024/03/05 12:0 a.m.8 views

libheif Security Vulnerabilities

libheif is an ISO/IEC 23008-12:2017 HEIF file format decoder and encoder. A security vulnerability exists in libheif 1.17.6 and earlier versions, which stems from a memory leak vulnerability in the function JpegEncoder::Encode. An attacker can exploit the vulnerability to cause a denial of servic...

7.5CVSS6.6AI score0.00687EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2024/03/04 12:0 a.m.4 views

PT-2024-3055

Name of the Vulnerable Software and Affected Versions libheif versions prior to 1.17.7 Description The issue is related to a memory leak in the JpegEncoder::Encode function, which can be exploited by an attacker to cause a denial of service attack. This flaw allows a remote attacker to disrupt...

7.8CVSS7.9AI score0.00687EPSS
Exploits1References14
SUSE CVE
SUSE CVE
added 2023/02/15 6:0 a.m.9 views

SUSE CVE-2010-0846

Unspecified vulnerability in the ImageIO component in Oracle Java SE and Java for Business 6 Update 18, 5.0 Update 23, 1.4.225, and 1.3.127 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors. NOTE: the previous information was obtained from the Marc...

7.5CVSS8.7AI score0.06581EPSS
Exploits0References12
CNNVD
CNNVD
added 2022/08/16 12:0 a.m.7 views

ffjpeg 安全漏洞

ffjpeg is a JPEG encoder/decoder by the individual developer Kai Chen in China. A security vulnerability exists in ffjpeg, which originates from a memory leak contained in the /src/jfif.c file...

6.5CVSS6.5AI score0.0064EPSS
Exploits1References2
Rows per page
Query Builder