Astra Linux – Vulnerability in htmldoc

There is a vulnerability in htmldoc 1.9.16. In the imageloadjpeg function, when image.cxx calls malloc, ‘img-width’ and ‘img-height’ are too large to prevent an integer overflow. As a result, the malloc function may return a heap block smaller than expected, causing a buffer overflow/Address...

EUVD-2021-29675

Malicious code in bioql PyPI...

SUSE CVE-2025-48072

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Version 3.3.2 is vulnerable to a heap-based buffer overflow during a read operation due to bad pointer math when decompressing DWAA-packed scan-line EXR...

UBUNTU-CVE-2025-48072

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. Version 3.3.2 is vulnerable to a heap-based buffer overflow during a read operation due to bad pointer math when decompressing DWAA-packed scan-line EXR...

The vulnerability of the TIFFInput::read_native_scanlines() function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library allows an attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the TIFFInput::readnativescanlines function in the src/tiff.imageio/tiffinput.cpp module of the OpenImageIO library is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

SUSE CVE-2017-15930

In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer...

SUSE CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

OSV-2022-715 Segv on unknown address in jpeg_read_scanlines

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=50217 https://pillow.readthedocs.io/en/stable/releasenotes/9.3.0.htmldecode-jpeg-compressed-blp1-data-in-original-mode Crash type: Segv on unknown address Crash state: jpegreadscanlines ImagingJpegDecode decode...

CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

DEBIAN-CVE-2022-27114

There is a vulnerability in htmldoc 1.9.16. In imageloadjpeg function image.cxx when it calls malloc,'img-width' and 'img-height' they are large enough to cause an integer overflow. So, the malloc function may return a heap blosmaller than the expected size, and it will cause a buffer...

HTMLDOC 输入验证错误漏洞

HTMLDOC is an open source program that converts HTML and Markdown files to EPUB, Indexed HTML, PostScript and PDF formats. A security vulnerability exists in HTMLDOC version 1.9.16, which stems from the fact that when the imageloadjpeg method calls malloc, img-width and img-height they are large...

PT-2022-18230 · Htmldoc +4 · Htmldoc +4

Name of the Vulnerable Software and Affected Versions: htmldoc version 1.9.16 Description: The issue arises in the image load jpeg function within image.cxx when it calls malloc. The img-width and img-height values are large enough to cause an integer overflow. As a result, the malloc function ma...

CVE-2021-42715

The CVE-2021-42715 issue concerns the HDR loader in the libstb component (stb_image.h) versions 1.33 through 2.27, where truncated end-of-file RLE scanlines are parsed as an infinite sequence of zero-length runs. This can allow a crafted HDR file to cause denial of service in applications using s...

Denial Of Service (DoS)

graphicsmagick:xenial is vulnerable to denial of service DoS. ReadOneJNGImage in coders/png.c results in a Null Pointer Dereference while transferring JPEG scanlines...

UBUNTU-CVE-2019-6247

An issue was discovered in Anti-Grain Geometry AGG 2.4 as used in SVG++ aka svgpp 1.2.3. A heap-based buffer overflow bug in svgppaggrender may lead to code execution. In the renderscanlinesaasolid function, the blendhline function is called repeatedly multiple times. blendhline is equivalent to ...

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:3388-1)

This update for ImageMagick fixes the following issues : - CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service bsc1061254 - CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service bsc1060176 -...

CVE-2017-15930

In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer...

Null pointer dereference

In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer...

CVE-2017-15930

In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer...

CVE-2017-15930

In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer...