Lucene search
K

198 matches found

Cvelist
Cvelist
added 2026/04/18 1:39 a.m.38 views

CVE-2026-40492 SAIL has heap buffer overflow in XWD decoder — bits_per_pixel vs pixmap_depth type confusion in byte-swap

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on pixmapdepth but the byte-swap code uses bitsperpixel independently. When...

9.8CVSS0.00332EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/18 1:39 a.m.3 views

CVE-2026-40492

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on pixmapdepth but the byte-swap code uses bitsperpixel independently. When...

9.8CVSS6AI score0.00397EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/04/18 1:39 a.m.6 views

CVE-2026-40492 SAIL has heap buffer overflow in XWD decoder — bits_per_pixel vs pixmap_depth type confusion in byte-swap

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on pixmapdepth but the byte-swap code uses bitsperpixel independently. When...

9.8CVSS6AI score0.00332EPSS
Exploits0References2
EUVD
EUVD
added 2026/04/18 1:39 a.m.6 views

EUVD-2026-23644

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on pixmapdepth but the byte-swap code uses bitsperpixel independently. When...

9.8CVSS6AI score0.00397EPSS
Exploits1References2
CVE
CVE
added 2026/04/18 1:39 a.m.26 views

CVE-2026-40492

SAIL’s CVE-2026-40492 describes a heap buffer overflow in the XWD decoder caused by a mismatch: when pixmap_depth=8, the code uses bits_per_pixel=32 for byte-swapping, leading to memory access beyond the 1-byte/pixel buffer. The issue affects versions prior to the patch 36aa5c7ec8a2bb35f6fb867a11...

9.8CVSS6AI score0.00332EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/04/18 1:39 a.m.5 views

CVE-2026-40492

SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02, the XWD codec resolves pixel format based on pixmapdepth but the byte-swap code uses bitsperpixel independently. When...

9.8CVSS5.6AI score0.00332EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/18 12:0 a.m.27 views

PT-2026-33585

Name of the Vulnerable Software and Affected Versions SAIL versions prior to commit 36aa5c7ec8a2bb35f6fb867a1177a6f141156b02 Description The XWD codec resolves pixel format based on the pixmap depth variable, but the byte-swap code independently uses bits per pixel. When pixmap depth is 8 BPP8...

9.8CVSS6AI score0.00332EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2026/04/18 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-40492

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SAIL is a cross-platform library for loading and saving images with support for animation, metadata, and ICC profiles. Prior to commit...

9.8CVSS5.7AI score0.00332EPSS
Exploits0References3
OSV
OSV
added 2026/04/07 8:40 a.m.4 views

SUSE-SU-2026:1193-1 Security update for gimp

This update for gimp fixes the following issues: - CVE-2026-4150: PSD File Parsing Integer Overflow Remote Code Execution Vulnerability bsc1259979. - CVE-2026-4153: PSP File Parsing Heap-based Buffer Overflow Remote Code Execution Vulnerability bsc1259984. - CVE-2026-4154: XPM File Parsing Intege...

7.8CVSS5.9AI score0.00755EPSS
Exploits0References7
OSV
OSV
added 2026/03/20 9:42 a.m.7 views

CLSA-2026-1773999754 Fix CVE(s): CVE-2026-25898

SECURITY UPDATE: global buffer overflow read via negative pixel index in UIL and XPM image encoders - debian/patches/CVE-2026-25898.patch: clamp negative pixel index values to zero in WriteUILImage, WritePICONImage, and WriteXPMImage before using them as array subscripts into the Cixel table. -...

9.1CVSS7.1AI score0.00348EPSS
Exploits0References1
OSV
OSV
added 2026/02/06 5:16 p.m.5 views

UBUNTU-CVE-2026-25556

MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in fzfillpixmapfromdisplaylist when an exception occurs during display list rendering. The function accepts a caller-owned fzpixmap pointer but incorrectly drops the pixmap in its error handling path before rethrowing the...

7.5CVSS5.8AI score0.00477EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/06 4:11 p.m.3 views

CVE-2026-25556 MuPDF 1.23.0 through 1.27.0 Barcode Decoding Double Free

MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in fzfillpixmapfromdisplaylist when an exception occurs during display list rendering. The function accepts a caller-owned fzpixmap pointer but incorrectly drops the pixmap in its error handling path before rethrowing the...

5.9CVSS5.9AI score0.00477EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/06 4:11 p.m.27 views

CVE-2026-25556 MuPDF 1.23.0 through 1.27.0 Barcode Decoding Double Free

MuPDF versions 1.23.0 through 1.27.0 contain a double-free vulnerability in fzfillpixmapfromdisplaylist when an exception occurs during display list rendering. The function accepts a caller-owned fzpixmap pointer but incorrectly drops the pixmap in its error handling path before rethrowing the...

5.9CVSS0.00477EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2020-8561

Malware in sbrugna...

7.8CVSS7.1AI score0.0095EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2005-2496

Malware in sbrugna...

5.1CVSS6AI score0.03923EPSS
Exploits0References44
F5 Networks
F5 Networks
added 2025/09/29 10:9 p.m.10 views

K000156687: Multiple ImageMagick vulnerabilities

Security Advisory Description CVE-2014-9818 ImageMagick allows remote attackers to cause a denial of service out-of-bounds access via a malformed sun file. CVE-2014-9819 Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a differe...

9.8CVSS7.7AI score0.03708EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/22 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2020-16600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A Use After Free vulnerability exists in Artifex Software, Inc. MuPDF library 1.17.0-rc1 and earlier when a valid page was followed by a page with invalid pixma...

7.8CVSS7.2AI score0.0095EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-51103

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A floating point exception divide-by-zero vulnerability was discovered in Artifex MuPDF 1.23.4 in the function fznewpixmapfromfloatdata of pixmap.c...

7.5CVSS7.3AI score0.00914EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/05/13 4:3 p.m.6 views

xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()

An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow will return a BadAlloc error without validating the window tree marked just before, which leaves the...

7.8CVSS5.7AI score0.00369EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/05/13 8:29 a.m.5 views

xorg: xwayland: Use of uninitialized pointer in compRedirectWindow()

An access to an uninitialized pointer flaw was found in X.Org and Xwayland. The function compCheckRedirect may fail if it cannot allocate the backing pixmap. In that case, compRedirectWindow will return a BadAlloc error without validating the window tree marked just before, which leaves the...

7.8CVSS5.7AI score0.00369EPSS
Exploits0References4
Rows per page
Query Builder