2 matches found
CVE-2015-7508
Libnsbmp 0.1.2 is vulnerable to a heap-based buffer overflow in bmp_decode_rle (libnsbmp.c). The last row of Run-Length Encoded data can overflow libnsbmp’s bitmap buffer, enabling DoS (crash) or possibly arbitrary code execution. The connected sources confirm the issue and cite a public exploit/...
CVE-2015-7507
CVE-2015-7507 affects Libnsbmp 0.1.2. Connected sources confirm a DoS via an out-of-bounds read triggered by a crafted color table in bmp_decode_rgb/bmp_decode_rle, with Libnsbmp described as a C decoding library for BMP/ICO. Public details also reference a heap overflow/vulnerabilities in this v...