Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Imlib2
(Enlightenment)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 22 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2024-02-09 | CVE-2024-25450 | imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init_imlib_fonts(). | Imlib2 | 8.8 | ||
| 2024-02-09 | CVE-2024-25447 | An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. | Imlib2 | 8.8 | ||
| 2024-02-09 | CVE-2024-25448 | An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. | Imlib2 | 8.8 | ||
| 2020-05-09 | CVE-2020-12761 | modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map. | Imlib2 | 9.1 | ||
| 2016-05-13 | CVE-2016-4024 | Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation. | Debian_linux, Imlib2, Opensuse | 9.8 | ||
| 2016-05-13 | CVE-2016-3994 | The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read. | Debian_linux, Imlib2 | 8.2 | ||
| 2016-05-13 | CVE-2016-3993 | Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates. | Debian_linux, Imlib2 | 7.5 | ||
| 2016-05-13 | CVE-2014-9771 | Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation. | Debian_linux, Imlib2 | 7.5 | ||
| 2016-05-13 | CVE-2014-9764 | imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file. | Debian_linux, Imlib2 | 7.5 | ||
| 2016-05-13 | CVE-2014-9763 | imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file. | Debian_linux, Imlib2 | 7.5 |