CVE-2026-24823

The CVE-2026-24823 issue refers to an out-of-bounds write / buffer copy without size checks in FASTSHIFT X-TRACK, specifically in the PNG decoding path ( inflate.C within Software/X-Track/USER/App/Utils/lv_img_png/PNGdec/src modules). Affected software: X-TRACK up to and including v2.7. The Red H...

PT-2026-4898

Out-of-bounds Write, Buffer Copy without Checking Size of Input 'Classic Buffer Overflow' vulnerability in FASTSHIFT X-TRACK Software/X-Track/USER/App/Utils/lv img png/PNGdec/src modules. This vulnerability is associated with program files inflate.C. This issue affects X-TRACK: through v2.7...

EUVD-2010-2360

Malware in sbrugna...

OSV-2025-486 Bad-cast to cv::PngDecoder from invalid vptr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=426783958 Crash type: Bad-cast Crash state: Bad-cast to cv::PngDecoder from invalid vptr cv::PngDecoder::readData cv::imdecode...

PT-2025-5655 · Opencv · Opencv

Name of the Vulnerable Software and Affected Versions: OpenCV affected versions not specified Description: The issue is related to a heap buffer overflow read in the PngDecoder of OpenCV. The crash occurs in the cv::PngDecoder::readHeader function, which is called by cv::imdecode and cv::imdecode...

OSV-2024-1417 Heap-buffer-overflow in cv::PngDecoder::read_from_io

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=386688710 Crash type: Heap-buffer-overflow READ 4 Crash state: cv::PngDecoder::readfromio cv::PngDecoder::readchunk cv::PngDecoder::readHeader...

SUSE CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframecommon function in libavcodec/pngdec.c...

PNGDec 缓冲区错误漏洞

PNGDec is an Arduino PNG image decoder library from the individual developer Larry Bank. A security vulnerability exists in PNGDec that stems from a heap buffer overflow in interceptorfwrite.part.57 of the sanitizercommoninterceptors.inc file...

PNGDec 缓冲区错误漏洞

PNGDec is an Arduino PNG image decoder library from the individual developer Larry Bank. A security vulnerability exists in PNGDec that stems from a heap buffer overflow in asaninterceptorsmemintrinsics.cpp...

PNGDec 资源管理错误漏洞

PNGDec is an Arduino PNG image decoder library from the individual developer Larry Bank. A security vulnerability exists in PNGDec that stems from a floating point exception in SaveBMP in the /linux/main.cpp file...

PNGDec 安全漏洞

PNGDec is an Arduino PNG image decoder library from the individual developer Larry Bank. A security vulnerability exists in PNGDec, which stems from a global buffer overflow in inflatefast in the /src/inffast.c file...

CVE-2022-23585

Tensorflow is an Open Source Machine Learning Framework. When decoding PNG images TensorFlow can produce a memory leak if the image is invalid. After calling png::CommonInitDecode..., &decode, the decode value contains allocated buffers which can only be freed by calling...

Denial Of Service (DoS)

GStreamer is denial of service DoS. Multiple integer overflow flaws, that could lead to a buffer overflow, were found in the GStreamer Good Plug-ins PNG decoding handler. An attacker could create a specially-crafted PNG file that would cause an application using the GStreamer Good Plug-ins librar...

TAU Threat Intelligence Notification: Spear Phishing Targeting Italy

Summary This campaign is targeting users in Italy with spear phishing email containing malicious attachments. Figure 1: Emails with the malicious XLS attachment The image above show one of the sample has attached in multiple email that has been sent to email address with Italy ccTLD. The attached...

LuPng in Heap Buffer Overflow Vulnerability

LuPng is a PNG format decoder/encoder. A heap buffer overflow vulnerability exists in the 'insertByte' function of the miniz/lupng.c file in LuPng 2017-03-10 and earlier versions, which can be exploited by an attacker to execute arbitrary code or cause a denial of service...

FFmpeg 'decode_frame_common' function heap buffer overflow vulnerability

FFmpeg is a complete solution for recording, converting and streaming audio and video from the FFmpeg team. A heap buffer overflow vulnerability exists in the 'decodeframecommon' function in the libavcodec/pngdec.c file in FFmpeg. An attacker can exploit this vulnerability to cause a denial of...

UBUNTU-CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframecommon function in libavcodec/pngdec.c...

DEBIAN-CVE-2017-7863

FFmpeg before 2017-02-04 has an out-of-bounds write caused by a heap-based buffer overflow related to the decodeframecommon function in libavcodec/pngdec.c...

UBUNTU-CVE-2017-7866

FFmpeg before 2017-01-23 has an out-of-bounds write caused by a stack-based buffer overflow related to the decodezbuf function in libavcodec/pngdec.c...

Oracle Linux 5 : gstreamer-plugins-good (ELSA-2009-1123)

The remote Oracle Linux 5 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2009-1123 advisory. 0.10.9-1.el5.2 - CVE-2009-1932: Integer overflow in PNG decoder. Tenable has extracted the preceding description block directly from the Oracle Linux security...