Lucene search
K

11 matches found

Snyk
Snyk
added 2026/05/14 9:23 p.m.11 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write in the sgiinput.cpp process when handling SGI RLE image files. An attacker can cause a heap buffer overflow and crash the application by supplying a crafted .sgi file with an RLE count exceeding the scanline width...

8.4CVSS6AI score0.00126EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2021-0182

Malware in sbrugna...

5.8CVSS6AI score0.01573EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2023/02/15 3:51 a.m.5 views

SUSE CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

8.1CVSS7.2AI score0.01573EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2021/04/15 12:0 a.m.35 views

EulerOS Virtualization 2.9.1 : python-pillow (EulerOS-SA-2021-1729)

According to the versions of the python-pillow package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - libImaging/FliDecode.c in Pillow before 6.2.2 has an FLI buffer overflow.CVE-2020-5313 - An out-of-bounds write flaw was...

9.8CVSS7.5AI score0.04212EPSS
Exploits0References13
OSV
OSV
added 2021/01/12 9:15 a.m.6 views

ALPINE-CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

5.4CVSS8.8AI score0.01573EPSS
Exploits0References1
Mageia
Mageia
added 2020/11/23 7:51 p.m.45 views

Updated python-pillow packages fix security vulnerabilities

Pillow before 6.2.3 and 7.x before 7.0.1 has multiple out-of-bounds reads in libImaging/FliDecode.c CVE-2020-10177. In libImaging/PcxDecode.c in Pillow before 6.2.3 and 7.x before 7.0.1, an out-of-bounds read can occur when reading PCX files where state-shuffle is instructed to read beyond...

8.1CVSS2.4AI score0.02514EPSS
Exploits0References2
OSV
OSV
added 2017/07/17 1:18 p.m.3 views

DEBIAN-CVE-2017-11352

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144...

6.5CVSS6.6AI score0.01843EPSS
Exploits0References1
OSV
OSV
added 2017/07/17 12:0 a.m.9 views

UBUNTU-CVE-2017-11352

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144...

6.5CVSS6.7AI score0.01843EPSS
Exploits0References4
OSV
OSV
added 2006/08/03 1:4 a.m.3 views

DEBIAN-CVE-2006-3462

Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library libtiff before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images...

7.5CVSS8.4AI score0.05218EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2006/08/03 1:4 a.m.35 views

CVE-2006-3462

Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library libtiff before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images...

7.5CVSS7.5AI score0.05218EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2006/08/03 1:0 a.m.34 views

CVE-2006-3462

Heap-based buffer overflow in the NeXT RLE decoder in the TIFF library libtiff before 3.8.2 might allow context-dependent attackers to execute arbitrary code via unknown vectors involving decoding large RLE images...

7.5CVSS7.4AI score0.05218EPSS
Exploits1
Rows per page
Query Builder