Search CVE reports
1 – 4 of 4 results
CVE-2023-43281
Medium priorityDouble Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function.
14 affected packages
arm-compute-library, armnn, bibledit, bibledit-cloud, emscripten...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
arm-compute-library | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
armnn | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
bibledit | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
bibledit-cloud | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
emscripten | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
libsfml | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
libstb | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
timg | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
tiny-dnn | Needs evaluation | Not in release | Not in release | Ignored | Ignored |
utox | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
visp | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-34300
Low priorityIn tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.
12 affected packages
asymptote, chromium-browser, godot, goxel, love...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
asymptote | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
chromium-browser | Not affected | Not affected | Not affected | Not affected | Ignored |
godot | Needs evaluation | Needs evaluation | Needs evaluation | — | — |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
psychtoolbox-3 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
qt6-webengine | Needs evaluation | Needs evaluation | — | — | — |
qtwebengine-opensource-src | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
rbdoom3bfg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
renderdoc | Not in release | Needs evaluation | Needs evaluation | — | — |
tinyexr | Needs evaluation | Needs evaluation | — | — | — |
CVE-2021-43519
Low priorityStack overflow in lua_resume of ldo.c in Lua Interpreter 5.1.0~5.4.4 allows attackers to perform a Denial of Service via a crafted script file.
45 affected packages
ardour, bam, blobby, ceph, darktable...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
ardour | Not affected | Not affected | Not affected | Not affected | Not affected |
bam | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
blobby | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
ceph | Not affected | Not affected | Not affected | Not affected | Not affected |
darktable | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
eja | Not in release | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
emscripten | Needs evaluation | Needs evaluation | — | Needs evaluation | Needs evaluation |
enigma | Not affected | Not affected | Not affected | Not affected | Not affected |
freeciv | Not affected | Not affected | Not affected | Not affected | Not affected |
freedroidrpg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
fs-uae | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
golly | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
grub2 | Not affected | Not affected | Not affected | Not affected | Not affected |
gtk2-engines | Not affected | Not affected | Not affected | Not affected | Not affected |
haskell-hslua | Not affected | Not affected | Not affected | Not affected | Not affected |
hedgewars | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.1 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.2 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.3 | Not affected | Not affected | Not affected | Not affected | Not affected |
lua5.4 | Not affected | Not affected | Not in release | Not in release | Not in release |
lua50 | Not in release | Not in release | Not affected | Not affected | Not affected |
luajit | Not affected | Not affected | Not affected | Not affected | Not affected |
mame | Not affected | Not affected | Not affected | Not affected | Not affected |
naev | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
openscenegraph | Not affected | Not affected | Not affected | Not affected | Not affected |
redis | Not affected | Not affected | Not affected | Not affected | Not affected |
rust-lua52-sys | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
scite | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
scorched3d | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
scummvm | Not affected | Not affected | Not affected | Not affected | Not affected |
spring | Not affected | Not affected | Not affected | Not affected | Not affected |
syslinux | Not affected | Not affected | Not affected | Not affected | Not affected |
syslinux-legacy | Not in release | Not in release | Not affected | Not affected | Not affected |
tagua | Not affected | Not affected | Not affected | Not affected | Not affected |
tarantool | Needs evaluation | Needs evaluation | Needs evaluation | — | Needs evaluation |
texlive-bin | Not affected | Not affected | Not affected | Not affected | Not affected |
tup | Needs evaluation | Needs evaluation | Needs evaluation | — | Ignored |
ufoai | Not affected | Not affected | Not affected | Not affected | Not affected |
vifm | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
wcc | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
wesnoth | — | — | — | — | Ignored |
widelands | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
xmoto | Not affected | Not affected | Not affected | Not affected | Not affected |
zfs-linux | Not affected | Not affected | Not affected | Not affected | Not affected |
CVE-2018-16981
Medium prioritystb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function.
13 affected packages
catimg, ccextractor, flif, goxel, libsfml...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
catimg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
ccextractor | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Not in release |
flif | Not in release | Not in release | Not in release | Not in release | Not in release |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
libsfml | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
libsixel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
renderdoc | Not in release | Needs evaluation | Needs evaluation | Not in release | Not in release |
retroarch | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
tweeny | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Not in release |
zam-plugins | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
zynaddsubfx | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |