CVE-2017-14232
- EPSS 0.24%
- Veröffentlicht 15.08.2019 17:15:11
- Zuletzt bearbeitet 21.11.2024 03:12:22
The read_chunk function in flif-dec.cpp in Free Lossless Image Format (FLIF) 0.3 allows remote attackers to cause a denial of service (invalid memory read and application crash) via a crafted flif file.
CVE-2019-14373
- EPSS 0.17%
- Veröffentlicht 28.07.2019 19:15:11
- Zuletzt bearbeitet 21.11.2024 04:26:37
An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a heap-based buffer over-read in libpng via a crafted flif file.
CVE-2018-14876
- EPSS 0.17%
- Veröffentlicht 03.08.2018 00:29:00
- Zuletzt bearbeitet 21.11.2024 03:49:59
An issue was discovered in image_save_png in image/image-png.cpp in Free Lossless Image Format (FLIF) 0.3. Attackers can trigger a longjmp that leads to an uninitialized stack frame after a libpng error concerning the IHDR image width.
CVE-2018-12109
- EPSS 0.26%
- Veröffentlicht 11.06.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:44:36
An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The TransformPaletteC<FileIO>::process function in transform/palette_C.hpp allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or po...
CVE-2018-11507
- EPSS 0.31%
- Veröffentlicht 28.05.2018 04:29:00
- Zuletzt bearbeitet 21.11.2024 03:43:30
An issue was discovered in Free Lossless Image Format (FLIF) 0.3. An attacker can trigger a long loop in image_load_pnm in image/image-pnm.cpp.
CVE-2018-10971
- EPSS 0.21%
- Veröffentlicht 10.05.2018 15:29:00
- Zuletzt bearbeitet 21.11.2024 03:42:25
An issue was discovered in Free Lossless Image Format (FLIF) 0.3. The Plane function in image/image.hpp allows remote attackers to cause a denial of service (attempted excessive memory allocation) via a crafted file.