2 matches found
CVE-2024-34408
CVE-2024-34408 affects Tencent’s Libpag up to version 4.3.51. The vulnerability is an integer overflow in DecodeStream::checkEndOfFile() within codec/utils/DecodeStream.cpp triggered by a crafted PAG file. Several connected sources describe the issue and indicate potential code execution; Red Hat...
CVE-2024-33078
CVE-2024-33078 affects Tencent Libpag v4.3. The vulnerability is a buffer overflow in the image handling code that can lead to remote code execution when a crafted image is processed. Impact is described as high/confidentiality, integrity, and availability disruption (per CVSS 3.1: 9.8). Affected...