Enlightenment imlib2 1.4.2

CPE Details

Enlightenment imlib2 1.4.2
enlightenment
imlib2
1.4.2
2020-05-27
15h18 +00:00
2020-05-27
15h18 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:enlightenment:imlib2:1.4.2:*:*:*:*:*:*:*

Informations

Vendor

enlightenment

Product

imlib2

Version

1.4.2

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2011-5326 2016-05-13 14h00 +00:00 imlib2 before 1.4.9 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) by drawing a 2x1 ellipse.
7.5
High
CVE-2014-9762 2016-05-13 14h00 +00:00 imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a GIF image without a colormap.
7.5
High
CVE-2014-9763 2016-05-13 14h00 +00:00 imlib2 before 1.4.7 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted PNM file.
7.5
High
CVE-2014-9764 2016-05-13 14h00 +00:00 imlib2 before 1.4.7 allows remote attackers to cause a denial of service (segmentation fault) via a crafted GIF file.
7.5
High
CVE-2014-9771 2016-05-13 14h00 +00:00 Integer overflow in imlib2 before 1.4.7 allows remote attackers to cause a denial of service (memory consumption or application crash) via a crafted image, which triggers an invalid read operation.
7.5
High
CVE-2016-3993 2016-05-13 14h00 +00:00 Off-by-one error in the __imlib_MergeUpdate function in lib/updates.c in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted coordinates.
7.5
High
CVE-2016-3994 2016-05-13 14h00 +00:00 The GIF loader in imlib2 before 1.4.9 allows remote attackers to cause a denial of service (application crash) or obtain sensitive information via a crafted image, which triggers an out-of-bounds read.
8.2
High
CVE-2016-4024 2016-05-13 14h00 +00:00 Integer overflow in imlib2 before 1.4.9 on 32-bit platforms allows remote attackers to execute arbitrary code via large dimensions in an image, which triggers an out-of-bounds heap memory write operation.
9.8
Critical
CVE-2008-5187 2008-11-21 01h00 +00:00 The load function in the XPM loader for imlib2 1.4.2, and possibly other versions, allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XPM file that triggers a "pointer arithmetic error" and a heap-based buffer overflow, a different vulnerability than CVE-2008-2426.
7.5
The information presented on CVE Find originates from several carefully selected reference sources. CVE data is provided by MITRE Corporation and the National Vulnerability Database (NVD). The Known Exploited Vulnerabilities (KEV) catalog is sourced from the Cybersecurity and Infrastructure Security Agency (CISA), while EPSS scores come from FIRST.org. Additionally, data regarding software weaknesses (CWE) and common attack patterns (CAPEC) is maintained by MITRE Corporation, and information on hardware and software configurations (CPE) is provided by the NVD.