Lucene search
+L

6013 matches found

Ubuntu
Ubuntu
added 2026/06/09 4:27 p.m.20 views

USN-8156-2: GDK-PixBuf vulnerability

USN-8156-1 fixed a vulnerability in GDK-PixBuf. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that GDK-PixBuf incorrectly handled certain JPEG files. An attacker could use this issue to caus...

7.5CVSS7.6AI score0.01069EPSS
Exploits1
OSV
OSV
added 2026/06/09 4:27 p.m.10 views

USN-8156-2 gdk-pixbuf vulnerability

USN-8156-1 fixed a vulnerability in GDK-PixBuf. This update provides the corresponding update for Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS. Original advisory details: It was discovered that GDK-PixBuf incorrectly handled certain JPEG files. An attacker could use this issue to caus...

7.5CVSS7.6AI score0.01069EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.12 views

EulerOS 2.0 SP11 : gdk-pixbuf2 (EulerOS-SA-2026-2241)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper...

7.5CVSS7.5AI score0.01069EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/06/09 12:0 a.m.23 views

image-size 资源管理错误漏洞

image-size is a lightweight image size retrieval tool developed by image-size. Versions of image-size from 1.1.0 to 1.2.1 and from 2.0.0 to 2.0.2 contained security vulnerabilities. These vulnerabilities stemmed from the findBox function, which had a denial-of-service vulnerability when processin...

8.7CVSS5.9AI score0.0064EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2026/06/09 12:0 a.m.12 views

EulerOS 2.0 SP11 : gdk-pixbuf2 (EulerOS-SA-2026-2203)

According to the versions of the gdk-pixbuf2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper...

7.5CVSS7.5AI score0.01069EPSS
Exploits1References2
Redos
Redos
added 2026/06/09 12:0 a.m.11 views

ROS-20260609-73-0006

The vulnerability of the jpegimageload function in the image loading library GdkPixbuf is related to the situation where the operation exits the buffer boundaries in memory when processing a specially created JPEG image. Exploiting this vulnerability could allow a malicious actor to cause service...

7.5CVSS5.7AI score0.01069EPSS
Exploits1
OSV
OSV
added 2026/06/08 12:20 p.m.7 views

USN-8397-1 jpeg-xl vulnerability

It was discovered that libjxl did not properly handle certain crafted PBM images. An attacker could possibly use this issue to cause libjxl to crash, resulting in a denial of service, or execute arbitrary code...

7.3CVSS5.8AI score0.00367EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.12 views

CVE-2026-7580

A vulnerability was detected in Exiftool up to 13.53. Impacted is the function Processmrld of the file lib/Image/ExifTool/GM.pm of the component JPEG/QuickTime/MOV/MP4. The manipulation of the argument -ee results in code injection. Attacking locally is a requirement. Upgrading to version 13.54 i...

5.3CVSS5.4AI score0.0018EPSS
Exploits0References1
OSV
OSV
added 2026/06/05 3:18 p.m.10 views

JLSEC-2026-569

OpenCV is an Open Source Computer Vision Library. Versions 4.10.0 and 4.11.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the vulnerability...

9.8CVSS5.9AI score0.00371EPSS
Exploits1References4
Fedora
Fedora
added 2026/06/05 4:9 a.m.13 views

[SECURITY] Fedora 43 Update: jpegxl-0.11.2-1.fc43

This package contains a reference implementation of JPEG XL encoder and decoder...

8.8CVSS5.8AI score0.00199EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.14 views

Linux Distros Unpatched Vulnerability : CVE-2026-46011

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling...

7.8CVSS6.9AI score0.00125EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/05/30 12:0 a.m.17 views

RockyLinux 10 : gdk-pixbuf2 (RLSA-2026:19127)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:19127 advisory. gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JPEG image CVE-2026-5201 Tenable has extracted the...

7.5CVSS6AI score0.01069EPSS
Exploits1References3
OSV
OSV
added 2026/05/29 5:52 p.m.10 views

GHSA-RR89-W3H9-M66J ExifReader is vulnerable to denial of service via unbounded decompression of image metadata

Impact Versions of ExifReader from 4.20.0 through 4.38.1 do not bound the size of decompressed metadata blocks. When a caller invokes the asynchronous API e.g. ExifReader.loadfile or ExifReader.loadbuffer, async: true on an attacker-supplied image, a small compressed chunk in the file can expand ...

6.9CVSS5.4AI score0.00464EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2026/05/29 4:3 p.m.17 views

gdk-pixbuf2 security update

An update is available for gdk-pixbuf2. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gdk-pixbuf2 packages provide an image loading library that can be...

7.5CVSS6AI score0.01069EPSS
Exploits1
OSV
OSV
added 2026/05/29 4:3 p.m.14 views

RLSA-2026:19127 Important: gdk-pixbuf2 security update

The gdk-pixbuf2 packages provide an image loading library that can be extended by loadable modules for new image formats. It is used by toolkits such as GTK+ or clutter. Security Fixes: gdk-pixbuf: gdk-pixbuf: Denial of Service via heap-based buffer overflow when processing a specially crafted JP...

7.5CVSS6AI score0.01069EPSS
Exploits1References2
Fedora
Fedora
added 2026/05/29 1:13 a.m.12 views

[SECURITY] Fedora 44 Update: jpegxl-0.11.2-1.fc44

This package contains a reference implementation of JPEG XL encoder and decoder...

8.8CVSS5.8AI score0.00199EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/05/29 12:0 a.m.14 views

RockyLinux 10 : gstreamer1-plugins-bad-free, gstreamer1-plugins-base, gstreamer1-plugins-good, and gstreamer1-plugins-ugly-free (RLSA-2026:19024)

The remote RockyLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:19024 advisory. GStreamer: GStreamer: Arbitrary code execution via ASF file processing CVE-2026-2920 GStreamer: GStreamer: Remote Code Execution via heap-based buffer...

8.8CVSS6.4AI score0.00867EPSS
Exploits0References15
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:1 a.m.8 views

media: mtk-jpeg: fix use-after-free in release path due to uncancelled work

...

7.8CVSS5.4AI score0.00125EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.21 views

SUSE CVE-2026-46011

In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling any pending or running work in ctx-jpegwork. This creates a race...

5.5CVSS5.7AI score0.00125EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/27 9:3 p.m.14 views

CVE-2026-46011

A flaw was found in the Linux kernel's MediaTek JPEG mtk-jpeg driver. This use-after-free vulnerability arises from a race condition where the driver frees memory while it may still be in use by a work queue. This can allow a local attacker to cause system instability, leading to a denial of...

7.8CVSS6AI score0.00125EPSS
Exploits0References4
Rows per page
Query Builder