Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
netpbm project netpbm vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-2581
An out-of-bounds write vulnerability was found in netpbm prior to 10.61. A maliciously crafted file could cause the application to crash or possibly allow code execution.
Netpbm Project Netpbm
5.5
CVSSv3
CVE-2017-2586
A null pointer dereference vulnerability was found in netpbm prior to 10.61. A maliciously crafted SVG file could cause the application to crash.
Netpbm Project Netpbm
5.5
CVSSv3
CVE-2018-8975
The pm_mallocarray2 function in lib/util/mallocvar.c in Netpbm up to and including 10.81.03 allows remote malicious users to cause a denial of service (heap-based buffer over-read) via a crafted image file, as demonstrated by pbmmask.
Netpbm Project Netpbm
5.5
CVSSv3
CVE-2017-2587
A memory allocation vulnerability was found in netpbm prior to 10.61. A maliciously crafted SVG file could cause the application to crash.
Netpbm Project Netpbm
7.8
CVSSv3
CVE-2017-2579
An out-of-bounds read vulnerability was found in netpbm prior to 10.61. The expandCodeOntoStack() function has an insufficient code value check, so that a maliciously crafted file could cause the application to crash or possibly allows code execution.
Netpbm Project Netpbm 10.61.00
7.8
CVSSv3
CVE-2017-2580
An out-of-bounds write vulnerability was found in netpbm prior to 10.61. A maliciously crafted file could cause the application to crash or possibly allow code execution.
Netpbm Project Netpbm 10.61.00
5.5
CVSSv3
CVE-2017-5849
tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote malicious users to cause a denial of service (out-of-bounds read and write) via a crafted tiff image file, related to transposing width and height values.
Fedoraproject Fedora 25
Fedoraproject Fedora 24
Netpbm Project Netpbm 10.47.63
NA
CVE-2008-3520
Multiple integer overflows in JasPer 1.900.1 might allow context-dependent malicious users to have an unknown impact via a crafted image file, related to integer multiplication for memory allocation.
Jasper Project Jasper 1.900.1
9.8
CVSSv3
CVE-2005-1141
Integer overflow in the readpgm function in pnm.c for GOCR 0.40, when using the netpbm library, allows remote malicious users to execute arbitrary code via a PNM file with large width and height values, which leads to a heap-based buffer overflow.
Optical Character Recognition Project Optical Character Recognition 0.40
NA
CVE-2011-4517
The jpc_crg_getparms function in libjasper/jpc/jpc_cs.c in JasPer 1.900.1 uses an incorrect data type during a certain size calculation, which allows remote malicious users to trigger a heap-based buffer overflow and execute arbitrary code, or cause a denial of service (heap memo...
Jasper Project Jasper 1.900.1
Suse Linux Enterprise Server 11
Fedoraproject Fedora 16
Canonical Ubuntu Linux 10.10
Suse Linux Enterprise Desktop 11
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 11.10
Debian Debian Linux 6.0
Fedoraproject Fedora 15
Canonical Ubuntu Linux 10.04
Suse Linux Enterprise Software Development Kit 11
Oracle Outside In Technology 8.3.5
Oracle Outside In Technology 8.3.7
Redhat Enterprise Linux Desktop 4
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »