CVE-2026-23530 FreeRDP has heap-buffer-overflow in planar_decompress_plane_rle

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

CLSA-2025-1759420505 Fix CVE(s): CVE-2025-55212

SECURITY UPDATE: denial of Service vulnerability due to zero dimensions crash - debian/patches/CVE-2025-55212.patch: Fix invalid width or height checks in ThumbnailImage method and add safe reciprocal function to avoid division by zero - CVE-2025-55212...

SUSE CVE-2019-13962

lavcCopyPicture in modules/codec/avcodec/video.c in VideoLAN VLC media player through 3.0.7 has a heap-based buffer over-read because it does not properly validate the width and height...

The vulnerability of the bmp2tiff component in the LibTIFF library allows a hacker to gain access to data beyond the buffer boundaries allocated in dynamic memory.

The vulnerability of the bmp2tiff component in the LibTIFF library arises from insufficient checking of the input parameters biWidth and biHeight in the bitmap-information header of the BMP image. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to data beyo...

gstreamer1-plugins-bad-free security update

1.4.5-6 - Fix h264 and h265 buffer size checks - Fix mpegts pat parsing and add more size checks Resolves: rhbz1400897 1.4.5-5 - vmncdec: Sanity-check width/height before using it Resolves: rhbz1400897...