Vulnerabilities > Enlightenment > Imlib2 > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-09 | CVE-2024-25447 | Out-of-bounds Write vulnerability in Enlightenment Imlib2 1.9.1 An issue in the imlib_load_image_with_error_return function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. | 8.8 |
| 2024-02-09 | CVE-2024-25448 | Out-of-bounds Write vulnerability in Enlightenment Imlib2 1.9.1 An issue in the imlib_free_image_and_decache function of imlib2 v1.9.1 allows attackers to cause a heap buffer overflow via parsing a crafted image. | 8.8 |
| 2024-02-09 | CVE-2024-25450 | Unspecified vulnerability in Enlightenment Imlib2 1.9.1 imlib2 v1.9.1 was discovered to mishandle memory allocation in the function init_imlib_fonts(). | 8.8 |
| 2016-05-13 | CVE-2016-3994 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read. | 8.2 |
| 2016-05-13 | CVE-2016-3993 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates. | 7.5 |
| 2016-05-13 | CVE-2014-9771 | Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation. | 7.5 |
| 2016-05-13 | CVE-2014-9764 | Improper Input Validation vulnerability in multiple products imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file. | 7.5 |
| 2016-05-13 | CVE-2014-9763 | Numeric Errors vulnerability in multiple products imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file. | 7.5 |
| 2016-05-13 | CVE-2014-9762 | Improper Input Validation vulnerability in multiple products imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a GIF image without a colormap. | 7.5 |
| 2016-05-13 | CVE-2011-5326 | Numeric Errors vulnerability in multiple products imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse. | 7.5 |