DanBloomberg/leptonica

GitHub

github.com

Releases49

Frequency2 months 2 weeks

Last Release 6 months ago

Stars2.05K

Leptonica is an open source library containing software that is broadly useful for image processing and image analysis applications. The official github repository for Leptonica is: danbloomberg/leptonica. See leptonica.org for more documentation.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-38266 ↗	Sep 9, 2022Friday, 9 September 2022, 22:15	6.5 MEDIUM	—
An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.
CVE-2020-36281 ↗	Mar 12, 2021Friday, 12 March 2021, 01:15	7.5 HIGH	5 MEDIUM
Leptonica before 1.80.0 allows a heap-based buffer over-read in pixFewColorsOctcubeQuantMixed in colorquant1.c.
CVE-2020-36278 ↗	Mar 12, 2021Friday, 12 March 2021, 00:15	7.5 HIGH	5 MEDIUM
Leptonica before 1.80.0 allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c.
CVE-2020-36279 ↗	Mar 12, 2021Friday, 12 March 2021, 00:15	7.5 HIGH	5 MEDIUM
Leptonica before 1.80.0 allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c.
CVE-2020-36280 ↗	Mar 12, 2021Friday, 12 March 2021, 00:15	7.5 HIGH	5 MEDIUM
Leptonica before 1.80.0 allows a heap-based buffer over-read in pixReadFromTiffStream, related to tiffio.c.
CVE-2020-36277 ↗	Mar 11, 2021Thursday, 11 March 2021, 21:15	7.5 HIGH	5 MEDIUM
Leptonica before 1.80.0 allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c.