11 matches found
CVE-2026-3707
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
Integer Overflow or Wraparound
Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the DecodeGifFromMemory function of gifdecoder.c when processing the canvasheight argument. An attacker can cause memory corruption or potentially execute arbitrary code by supplying crafted input that...
EUVD-2026-10214
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
CVE-2026-3707
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
CVE-2026-3707
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
CVE-2026-3707 MrNanko webp4j gif_decoder.c DecodeGifFromMemory integer overflow
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
CVE-2026-3707
MrNanko webp4j (up to 1.3.x) is affected by CVE-2026-3707. The vulnerability is in DecodeGifFromMemory (src/main/c/gif_decoder.c): manipulation of the canvas_height argument can trigger an integer overflow. Local access is required to exploit. Public exploit is available. Patch identified as 8977...
CVE-2026-3707 MrNanko webp4j gif_decoder.c DecodeGifFromMemory integer overflow
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
CVE-2026-3707
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gifdecoder.c. Such manipulation of the argument canvasheight leads to integer overflow. Local access is required to approach this attack. The exploit is...
PT-2026-23916
A vulnerability was identified in MrNanko webp4j up to 1.3.x. The affected element is the function DecodeGifFromMemory of the file src/main/c/gif decoder.c. Such manipulation of the argument canvas height leads to integer overflow. Local access is required to approach this attack. The exploit is...
WebP4j 输入验证错误漏洞
WebP4j is a Java library developed by Mr Nanko, designed to support WebP image encoding and animation processing. Versions of WebP4j 1.3.x and earlier contained a vulnerability related to input validation errors. This vulnerability stemmed from incorrect handling of the parameter “canvasheight” i...