Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

36 matches found

OSV
OSVadded 3 days ago3 views

CLSA-2026-1780391238 Fix CVE(s): CVE-2026-8376

SECURITY UPDATE: heap buffer overflow in the regexp compiler 32-bit - debian/patches/CVE-2026-8376.patch: guard against an SSizet overflow when sizing the joined fixed-substring buffer in Perlstudychunk in regcomp.c; backported from upstream commit 5e7f119eb2bb1181be908701f22bf7068e722f1c. -...

9.8CVSS6AI score0.00048EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в imagemagick

There are 4 locations in HistogramCompare in MagickCore/histogram.c where integer overflow is possible during simple mathematical calculations. This occurs with the rgb values and the count value for a color. The patch uses casts to the ssizet type for these calculations, rather than using int...

4.3CVSS6.8AI score0.00133EPSS
Exploits1References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.2 views

Astra Linux - уязвимость в imagemagick

A flaw was discovered in ImageMagick within MagickCore/statistic.c. An attacker who submits a crafted file processed by ImageMagick could induce undefined behavior, resulting in an excessively large value for the 64-bit type ssizet. This likely leads to a disruption in the application’s...

4.3CVSS6.7AI score0.00101EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/05/11 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017598)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017598 advisory. There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values...

4.3CVSS5.9AI score0.00133EPSS
Exploits1References4
AstraLinux
AstraLinuxadded 2026/05/03 11:59 p.m.10 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fixed negative period/buffer sizes The calculation of the period size in the OSS layer may generate a negative value as an error. However, the code there assumes only positive values and handles them using sizet. ...

5.5CVSS5.8AI score0.00008EPSS
Exploits0References2
OSV
OSVadded 2024/11/11 4:38 p.m.4 views

CLSA-2024-1731343085 Fix CVE(s): CVE-2020-27772

SECURITY UPDATE: Integer overflow vulnerability in bmp.c - debian/patches/CVE-2020-27772.patch: fix integer overflow causing incorrect color primary values in BMP image encoding - CVE-2020-27772 - debian/patches/fix-cast-to-ssizet-always-resulting-in-zero.patch: Fix cast to ssizet always resultin...

4.3CVSS6.8AI score0.00101EPSS
Exploits1References1
SUSE CVE
SUSE CVEadded 2024/05/28 3:32 a.m.1 views

SUSE CVE-2021-47511

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix negative period/buffer sizes The period size calculation in OSS layer may receive a negative value as an error, but the code there assumes only the positive values and handle them with sizet. Due to that, a to...

7.8CVSS6.6AI score0.00008EPSS
Exploits0References19
OSV
OSVadded 2024/05/24 3:15 p.m.0 views

DEBIAN-CVE-2021-47511

In the Linux kernel, the following vulnerability has been resolved: ALSA: pcm: oss: Fix negative period/buffer sizes The period size calculation in OSS layer may receive a negative value as an error, but the code there assumes only the positive values and handle them with sizet. Due to that, a to...

5.5CVSS5.1AI score0.00008EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2024/05/20 12:43 p.m.14 views

CVE-2024-35878

A null pointer dereference vulnerability was found in vsnprintf when str and len parameters are passed to vsnprintf, which only allows passing a NULL ptr when the length is 0. This issue can result in a crash and damage to availability. Mitigation Mitigation for this issue is either not available...

5.5CVSS6.8AI score0.00071EPSS
Exploits0References4
Cvelist
Cvelistadded 2024/05/19 8:34 a.m.15 views

CVE-2024-35878 of: module: prevent NULL pointer dereference in vsnprintf()

In the Linux kernel, the following vulnerability has been resolved: of: module: prevent NULL pointer dereference in vsnprintf In ofmodalias, we can get passed the str and len parameters which would cause a kernel oops in vsnprintf since it only allows passing a NULL ptr when the length is also 0...

6.4AI score0.00071EPSS
Exploits0References3
SUSE CVE
SUSE CVEadded 2023/02/15 3:53 a.m.1 views

SUSE CVE-2020-25666

There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values and count value for a color. The patch uses casts to ssizet type for these calculations, instead of int. This flaw could impact...

5.3CVSS6.9AI score0.00133EPSS
Exploits1References9
SUSE CVE
SUSE CVEadded 2023/02/15 3:52 a.m.2 views

SUSE CVE-2020-27761

WritePALMImage in /coders/palm.c used sizet casts in several areas of a calculation which could lead to values outside the range of representable type unsigned long undefined behavior when a crafted input file was processed by ImageMagick. The patch casts to ssizet instead to avoid this issue. Re...

5.3CVSS6.5AI score0.00149EPSS
Exploits0References9
SUSE CVE
SUSE CVEadded 2023/02/15 3:52 a.m.3 views

SUSE CVE-2020-27774

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift for 64-bit type ssizet. This would most likely lead to an impact to application availability, but...

5.3CVSS6.3AI score0.00101EPSS
Exploits1References10
Prion
Prionadded 2020/12/08 9:15 p.m.16 views

Integer overflow

There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values and count value for a color. The patch uses casts to ssizet type for these calculations, instead of int. This flaw could impact...

4.3CVSS3.8AI score0.00133EPSS
Exploits1References3Affected Software2
Debian CVE
Debian CVEadded 2020/12/08 12:0 a.m.30 views

CVE-2020-25666

There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values and count value for a color. The patch uses casts to ssizet type for these calculations, instead of int. This flaw could impact...

4.3CVSS6.2AI score0.00133EPSS
Exploits1
Cvelist
Cvelistadded 2020/12/08 12:0 a.m.15 views

CVE-2020-25666

There are 4 places in HistogramCompare in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values and count value for a color. The patch uses casts to ssizet type for these calculations, instead of int. This flaw could impact...

5.2AI score0.00133EPSS
Exploits1References3
Veracode
Veracodeadded 2020/12/06 4:1 a.m.23 views

Undefined Behavior

In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...

3.3CVSS0.9AI score0.00123EPSS
Exploits1References4Affected Software4
Veracode
Veracodeadded 2020/12/06 4:1 a.m.21 views

Undefined Behavior

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift for 64-bit type ssizet. This would most likely lead to an impact to application availability, but...

3.3CVSS4AI score0.00101EPSS
Exploits1References4Affected Software4
OSV
OSVadded 2020/12/04 9:15 p.m.13 views

CVE-2020-27774

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift for 64-bit type ssizet. This would most likely lead to an impact to application availability, but...

3.3CVSS6.1AI score
Exploits0References3
OSV
OSVadded 2020/12/04 9:15 p.m.0 views

UBUNTU-CVE-2020-27774

A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of a too large shift for 64-bit type ssizet. This would most likely lead to an impact to application availability, but...

3.3CVSS6.7AI score0.00101EPSS
Exploits1References4
Rows per page
Query Builder