Search CVE reports
1 – 3 of 3 results
CVE-2023-43281
Medium priorityDouble Free vulnerability in Nothings Stb Image.h v.2.28 allows a remote attacker to cause a denial of service via a crafted file to the stbi_load_gif_main function.
14 affected packages
arm-compute-library, armnn, bibledit, bibledit-cloud, emscripten...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
arm-compute-library | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
armnn | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
bibledit | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
bibledit-cloud | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
emscripten | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Ignored |
libsfml | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
libstb | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
timg | Needs evaluation | Needs evaluation | Not in release | Ignored | Ignored |
tiny-dnn | Needs evaluation | Not in release | Not in release | Ignored | Ignored |
utox | Needs evaluation | Needs evaluation | Needs evaluation | Ignored | Ignored |
visp | Needs evaluation | Needs evaluation | Not in release | Needs evaluation | Needs evaluation |
CVE-2022-34300
Low priorityIn tinyexr 1.0.1, there is a heap-based buffer over-read in tinyexr::DecodePixelData.
12 affected packages
asymptote, chromium-browser, godot, goxel, love...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
asymptote | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
chromium-browser | Not affected | Not affected | Not affected | Not affected | Ignored |
godot | Needs evaluation | Needs evaluation | Needs evaluation | — | — |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
psychtoolbox-3 | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
qt6-webengine | Needs evaluation | Needs evaluation | — | — | — |
qtwebengine-opensource-src | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | — |
rbdoom3bfg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
renderdoc | Not in release | Needs evaluation | Needs evaluation | — | — |
tinyexr | Needs evaluation | Needs evaluation | — | — | — |
CVE-2018-16981
Medium prioritystb stb_image.h 2.19, as used in catimg, Emscripten, and other products, has a heap-based buffer overflow in the stbi__out_gif_code function.
13 affected packages
catimg, ccextractor, flif, goxel, libsfml...
Package | 24.04 LTS | 22.04 LTS | 20.04 LTS | 18.04 LTS | 16.04 LTS |
---|---|---|---|---|---|
catimg | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
ccextractor | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Not in release |
flif | Not in release | Not in release | Not in release | Not in release | Not in release |
goxel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
libsfml | Vulnerable | Vulnerable | Vulnerable | Vulnerable | Vulnerable |
libsixel | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
love | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
mame | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
renderdoc | Not in release | Needs evaluation | Needs evaluation | Not in release | Not in release |
retroarch | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Not in release |
tweeny | Needs evaluation | Needs evaluation | Needs evaluation | Not in release | Not in release |
zam-plugins | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |
zynaddsubfx | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation | Needs evaluation |