Unrated severityNVD Advisory· Published Aug 30, 2010· Updated Apr 29, 2026

CVE-2010-2575

Description

Heap-based buffer overflow in the RLE decompression functionality in the TranscribePalmImageToJPEG function in generators/plucker/inplug/image.cpp in Okular in KDE SC 4.3.0 through 4.5.0 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted image in a PDB file.

Affected products

KDE/Kde Sc13 versions
cpe:2.3:a:kde:kde_sc:4.3.0:*:*:*:*:*:*:*+ 12 more
- cpe:2.3:a:kde:kde_sc:4.3.0:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.3.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.3.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.3.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.3.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.3.5:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.0:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.1:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.2:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.3:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.4:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.4.5:*:*:*:*:*:*:*
- cpe:2.3:a:kde:kde_sc:4.5.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.003
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000