Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
libbpg project libbpg 0.9.7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-2575
A vulnerability was found while fuzzing libbpg 0.9.7. It is a NULL pointer dereference issue due to missing check of the return value of function malloc in the BPG encoder. This vulnerability appeared while converting a malicious JPEG file to BPG.
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-13135
A NULL Pointer Dereference exists in VideoLAN x265, as used in libbpg 0.9.7 and other products, because the CUData::initialize function in common/cudata.cpp mishandles memory-allocation failure.
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-13136
The image_alloc function in bpgenc.c in libbpg 0.9.7 has an integer overflow, with a resultant invalid malloc and NULL pointer dereference.
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-14034
The restore_tqb_pixels function in hevc_filter.c in libavcodec, as used in libbpg 0.9.7 and other products, miscalculates a memcpy destination address, which allows remote malicious users to cause a denial of service (heap-based buffer over-read and application crash) or possibly...
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-14795
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with hls_pcm_sample in...
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-14796
The hevc_write_frame function in libbpg.c in libbpg 0.9.7 allows remote malicious users to cause a denial of service (integer underflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to improper interaction with copy_CTB_to_hv in ...
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2017-14734
The build_msps function in libbpg.c in libbpg 0.9.7 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted BPG file, related to hevc_decode_init1.
Libbpg Project Libbpg 0.9.7
6.8
CVSSv2
CVE-2016-8710
An exploitable heap write out of bounds vulnerability exists in the decoding of BPG images in Libbpg library. A crafted BPG image decoded by libbpg can cause an integer underflow vulnerability causing an out of bounds heap write leading to remote code execution. This vulnerabilit...
Libbpg Project Libbpg 0.9.7
Libbpg Project Libbpg 0.9.4
6.8
CVSSv2
CVE-2016-5637
The restore_tqb_pixels function in libbpg 0.9.5 up to and including 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a &qu...
Libbpg Project Libbpg
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started