CVE-2022-26181
- EPSS 0.2%
- Veröffentlicht 28.02.2022 19:15:12
- Zuletzt bearbeitet 21.11.2024 06:53:33
Dropbox Lepton v1.2.1-185-g2a08b77 was discovered to contain a heap-buffer-overflow in the function aligned_dealloc():src/lepton/bitops.cc:108.
CVE-2018-20819
- EPSS 0.22%
- Veröffentlicht 23.04.2019 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:02:15
io/ZlibCompression.cc in the decompression component in Dropbox Lepton 1.2.1 allows attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact by crafting a jpg image file. The ...
CVE-2018-20820
- EPSS 0.29%
- Veröffentlicht 23.04.2019 14:29:00
- Zuletzt bearbeitet 21.11.2024 04:02:15
read_ujpg in jpgcoder.cc in Dropbox Lepton 1.2.1 allows attackers to cause a denial-of-service (application runtime crash because of an integer overflow) via a crafted file.
CVE-2018-12108
- EPSS 0.21%
- Veröffentlicht 11.06.2018 13:29:00
- Zuletzt bearbeitet 21.11.2024 03:44:36
An issue was discovered in Dropbox Lepton 1.2.1. The validateAndCompress function in validation.cc allows remote attackers to cause a denial of service (SIGFPE and application crash) via a malformed file.
CVE-2017-8891
- EPSS 0.17%
- Veröffentlicht 10.05.2017 16:29:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
Dropbox Lepton 1.2.1 allows DoS (SEGV and application crash) via a malformed lepton file because the code does not ensure setup of a correct number of threads.
CVE-2017-7448
- EPSS 0.28%
- Veröffentlicht 05.04.2017 23:59:00
- Zuletzt bearbeitet 20.04.2025 01:37:25
The allocate_channel_framebuffer function in uncompressed_components.hh in Dropbox Lepton 1.2.1 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a malformed JPEG image.