Product:

Imlib2

(Enlightenment)
Repositories

Unknown:

This might be proprietary software.

#Vulnerabilities 22
Date Id Summary Products Score Patch Annotated
2020-05-09 CVE-2020-12761 modules/loaders/loader_ico.c in imlib2 1.6.0 has an integer overflow (with resultant invalid memory allocations and out-of-bounds reads) via an icon with many colors in its color map. Imlib2 9.1
2024-02-09 CVE-2024-25447 An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. Imlib2 8.8
2024-02-09 CVE-2024-25448 An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. Imlib2 8.8
2024-02-09 CVE-2024-25450 imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init_imlib_fonts(). Imlib2 8.8
2016-05-13 CVE-2016-4024 Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation. Debian_linux, Imlib2, Opensuse 9.8
2016-05-13 CVE-2016-3994 The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read. Debian_linux, Imlib2 8.2
2016-05-13 CVE-2016-3993 Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates. Debian_linux, Imlib2 7.5
2016-05-13 CVE-2014-9771 Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation. Debian_linux, Imlib2 7.5
2016-05-13 CVE-2014-9764 imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file. Debian_linux, Imlib2 7.5
2016-05-13 CVE-2014-9763 imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file. Debian_linux, Imlib2 7.5