CVE-2026-44569 Open WebUI: Insecure Message Access Breaks Authorization

Open WebUI is a self-hosted artificial intelligence platform designed to operate entirely offline. Prior to 0.6.19, there's an IDOR in the channels message management system that allows authenticated users to modify or delete any message within channels they have read access to. The vulnerability...

SUSE CVE-2025-55074

Mattermost versions 10.11.x = 10.11.3, 10.5.x = 10.5.11 fail to enforce access permissions on the Agents plugin which allows other users to determine when users had read channels via channel member objects...

Linux Distros Unpatched Vulnerability : CVE-2018-12064

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h. CVE-2018-12064 Note that Nessus relies on the presence of the package...

SUSE CVE-2010-4543

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

SUSE CVE-2017-17789

In GIMP 2.8.22, there is a heap-based buffer overflow in readchanneldata in plug-ins/common/file-psp.c...

The vulnerability of the `read_channel_data` function in the GIMP graphic editor’s plug-ins/common/file-psp.c file, related to the issue of exceeding the buffer memory limit, allows a hacker to cause a service failure or execute arbitrary code.

The vulnerability of the readchanneldata function in the plug-ins/common/file-psp.c file of the GIMP graphic editor, as well as the GNU Image Manipulation Program, is related to the issue of leaving data outside of the memory buffer. Exploiting this vulnerability could allow an attacker to cause...

Out-of-Bounds

Overview Affected versions of this package are vulnerable to Out-of-Bounds tinyexr 0.9.5 has a heap-based buffer over-read via tinyexr::ReadChannelInfo in tinyexr.h. Remediation There is no fixed version for tinyexr. References - Github.com...

CVE-2017-17789

In GIMP 2.8.22, there is a heap-based buffer overflow in readchanneldata in plug-ins/common/file-psp.c...

GIMP 'read_channel_data' function heap buffer overflow vulnerability

GIMP GNU Image Manipulation Program, GNU Image Manipulation Program is a cross-platform open source image processing software developed by the GIMP team. The software enables a variety of image processing, including photo retouching, image compositing and image creation. A heap buffer overflow...

ImageMagick ReadPSDChannelZip function infinite loop vulnerability

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. An infinite loop vulnerability exists in the ReadPSDChannelZip function in coders/psd.c in ImageMagick 7.0.7-12 Q16. An attacker can exploit this vulnerability to caus...

Gimp: Integer overflow in the PSD image file plugin

Integer overflow in the readchanneldata function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow...

DEBIAN-CVE-2011-1782

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

Gimp: Heap-based buffer overflow in Paint Shop Pro (PSP) plug-in

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

Gimp: Heap-based buffer overflow in Paint Shop Pro (PSP) plug-in

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

Gimp: Heap-based buffer overflow in Paint Shop Pro (PSP) plug-in

Heap-based buffer overflow in the readchanneldata function in file-psp.c in the Paint Shop Pro PSP plugin in GIMP 2.6.11 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a PSPCOMPRLE aka RLE compression image file that begins a long run...

DEBIAN-CVE-2009-3909

Integer overflow in the readchanneldata function in plug-ins/file-psd/psd-load.c in GIMP 2.6.7 might allow remote attackers to execute arbitrary code via a crafted PSD file that triggers a heap-based buffer overflow...