HIGH🇬🇧 English

CVE-2024-25447

CVSS 8.8v3.1pub. 2024-02-09upd. 2025-05-15

An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
  • Enlightenment Imlib2

    APP
    Enlightenment
    1.9.1
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
Tagi
Memory
CWE
Referencje

Powiązane podatności

CVE-2020-12761CRITICAL9.1ten sam produkt

modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocation...

CVE-2016-4024CRITICAL9.8ten sam produkt

Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code ...

CVE-2024-25450HIGH8.8ten sam produkt

imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init_imlib_fonts().

CVE-2024-25448HIGH8.8ten sam produkt

An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause a heap buffer...

CVE-2011-5326HIGH7.5ten sam produkt

imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application...