Medium severity5.5NVD Advisory· Published Jul 30, 2024· Updated Jun 17, 2026
CVE-2024-41437
CVE-2024-41437
Description
A heap buffer overflow in the function cp_unfilter() (/vendor/cute_png.h) of hicolor v0.5.0 allows attackers to cause a Denial of Service (DoS) via a crafted PNG file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: =0.5.0
Patches
Vulnerability mechanics
References
5- github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-r1-cp_unfilter-cute_png-1019c11/poc/sample6.pngnvdExploitThird Party Advisory
- github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-r1-cp_unfilter-cute_png-1019c11/vulDescription.assets/image-20240530183857985.pngnvdExploitThird Party Advisory
- github.com/Helson-S/FuzzyTesting/blob/master/hicolor/heapof-r1-cp_unfilter-cute_png-1019c11/vulDescription.mdnvdExploitThird Party Advisory
- github.com/Helson-S/FuzzyTesting/tree/master/hicolor/heapof-r1-cp_unfilter-cute_png-1019c11nvdExploitThird Party Advisory
- github.com/Helson-S/FuzzyTesting/tree/master/hicolor/heapof-r1-cp_unfilter-cute_png-1019c11/pocnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.