2 matches found
CVE-2026-3283
A flaw was found in libvips. A local attacker can exploit this vulnerability by manipulating the extractband argument when calling the vipsextractbandbuild function. This can lead to an out-of-bounds read, potentially disclosing sensitive information...
CVE-2026-3283
A vulnerability has been found in libvips 8.19.0. This issue affects the function vipsextractbandbuild of the file libvips/conversion/extract.c. The manipulation of the argument extractband leads to out-of-bounds read. The attack needs to be performed locally. The exploit has been disclosed to th...