Lucene search
K

48 matches found

OSV
OSV
added 2026/07/02 2:13 p.m.3 views

PYSEC-2026-723 Out-of-bounds Read in OpenCV

An out-of-bounds read was discovered in OpenCV before 4.1.1 OpenCV-Python before 4.1.0.25. Specifically, variable coarsestscale is assumed to be greater than or equal to finestscale within the calc/oclcalc functions in disflow.cpp. However, this is not true when dealing with small images, leading...

6.5CVSS6.5AI score0.01742EPSS
Exploits1References8
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in imagemagick

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, there was a heap buffer over-read vulnerability when processing images with small dimensions using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-4...

7.1CVSS7.2AI score0.00137EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/29 7:35 p.m.11 views

CVE-2026-46599 Excessive resource consumption in PackBits decompression in golang.org/x/image/tiff

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

5.8AI score0.00353EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/29 7:35 p.m.13 views

CVE-2026-46599

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

5.8AI score0.00353EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/05/29 7:35 p.m.13 views

CVE-2026-46599

The TIFF decoder does not place a limit on the size of PackBits-compressed data. A maliciously-crafted image can exploit this to cause a small image both in terms of pixel width/height and encoded size to make the decoder decode large amounts of compressed data...

7.5CVSS5.8AI score0.00353EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/29 12:0 a.m.16 views

PT-2026-44992

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The TIFF decoder fails to impose a limit on the size of PackBits-compressed data. This allows a maliciously crafted image, even one with small pixel dimensions a...

9.1CVSS5.8AI score0.00487EPSS
Exploits0References99
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in OpenCV

A out-of-bounds read was discovered in OpenCV prior to version 4.1.1. Specifically, the variable coarsestscale is assumed to be greater than or equal to finestscale within the calc/oclcalc functions in disflow.cpp. However, this assumption is incorrect when dealing with small images, resulting in...

6.5CVSS6.1AI score0.01742EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2026/05/09 12:0 a.m.10 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-016800)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016800 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read...

7.1CVSS7.3AI score0.00137EPSS
Exploits0References4
OSV
OSV
added 2026/03/20 5:20 p.m.7 views

CLSA-2026-1774027236 Fix CVE(s): CVE-2026-27798

SECURITY UPDATE: heap buffer over-read with wavelet-denoise operator - debian/patches/CVE-2026-27798.patch: use 4columns instead of 3columns for resource and memory allocation in WaveletDenoiseImage to prevent over-read when processing small-dimension images - CVE-2026-27798...

7.1CVSS7.3AI score0.00137EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/28 12:24 a.m.6 views

SUSE CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

4CVSS5.9AI score0.00137EPSS
Exploits0References6
NVD
NVD
added 2026/02/26 12:16 a.m.11 views

CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS0.00137EPSS
Exploits0References3
OSV
OSV
added 2026/02/26 12:16 a.m.4 views

DEBIAN-CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS7.9AI score0.00137EPSS
Exploits0References1
OSV
OSV
added 2026/02/26 12:16 a.m.7 views

UBUNTU-CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS6AI score0.00137EPSS
Exploits0References6
CNNVD
CNNVD
added 2026/02/26 12:0 a.m.8 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities due to excessive buffer overflows when using th...

7.1CVSS7.3AI score0.00137EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/02/26 12:0 a.m.4 views

CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS6AI score0.00137EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/25 11:18 p.m.1 views

CVE-2026-27798 ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

4CVSS5.6AI score0.00137EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/25 11:18 p.m.26 views

CVE-2026-27798 ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

4CVSS0.00137EPSS
Exploits0References3
CVE
CVE
added 2026/02/25 11:18 p.m.28 views

CVE-2026-27798

CVE-2026-27798 affects ImageMagick; a heap buffer over-read occurs when processing small images with the -wavelet-denoise operator. Affected versions are 7.1.2-15 and 6.9.13-40, which have patches applied. The issue is documented across multiple sources in the provided documents, and no exploitat...

7.1CVSS5.6AI score0.00137EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/02/25 11:18 p.m.5 views

CVE-2026-27798

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

7.1CVSS7.9AI score0.00137EPSS
Exploits0
OSV
OSV
added 2026/02/25 11:18 p.m.4 views

CVE-2026-27798 ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small images

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a heap buffer over-read vulnerability occurs when processing an image with small dimension using the -wavelet-denoise operator. Versions 7.1.2-15 and 6.9.13-40...

4CVSS6AI score0.00137EPSS
Exploits0References5
Rows per page
Query Builder