17 matches found
EUVD-2024-53720
Malicious code in bioql PyPI...
EUVD-2024-52773
Malicious code in bioql PyPI...
EUVD-2024-53717
Malicious code in bioql PyPI...
EUVD-2024-53722
Malicious code in bioql PyPI...
EUVD-2024-53718
Malicious code in bioql PyPI...
CVE-2024-55456
lunasvg v3.0.1 was discovered to contain a segmentation violation via the component grayfindcell...
CVE-2024-57722
lunasvg v3.0.0 was discovered to contain a allocation-size-too-big bug via the component plutovgsurfacecreate...
CVE-2024-57723
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component compositionsourceover...
CVE-2024-57719
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component blendtransformedtiledargb.isra.0...
PT-2025-3550 · Lunasvg · Lunasvg
Name of the Vulnerable Software and Affected Versions: lunasvg version 3.0.0 Description: The issue is related to an allocation-size-too-big bug in the plutovg surface create component. This bug can be exploited. Recommendations: For lunasvg version 3.0.0, consider disabling the plutovg surface...
CVE-2024-57722
CVE-2024-57722 concerns lunasvg v3.0.0 with an allocation-size-oversize bug in the plutovg_surface_create path. Fedora advisories describe unbundling plutovg from lunasvg and updating lunasvg to use the repository-provided plutovg to fix multiple CVEs, implying the vulnerability relates to the si...
CVE-2024-57721
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovgpathaddpath...
CVE-2024-57723
CVE-2024-57723 affects lunasvg and is reflected in Fedora advisories for lunasvg/imhex (Fedora 42–44 updates). The segmentation fault in composition_source_over is addressed by updating lunasvg to a newer version and by unbundling/consuming the bundled plutovg in the ecosystem, followed by rebuil...
CVE-2024-57720
lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovgblend...
CVE-2024-33766
lunasvg v2.3.9 was discovered to contain an FPE Floating Point Exception at blendtransformedtiledargb.isra.0...
CVE-2024-33766
lunasvg v2.3.9 was discovered to contain an FPE Floating Point Exception at blendtransformedtiledargb.isra.0...
CVE-2024-33764
lunasvg v2.3.9 was discovered to contain a stack-overflow at lunasvg/source/element.h...