VYPR

lunasvg

by lunasvg

CVEs (12)

  • CVE-2024-33768CriMay 1, 2024
    risk 0.64cvss 9.8epss 0.01

    lunasvg v2.3.9 was discovered to contain a segmentation violation via the component composition_solid_source_over.

  • CVE-2024-57722HigJan 23, 2025
    risk 0.49cvss 7.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a allocation-size-too-big bug via the component plutovg_surface_create.

  • CVE-2024-33763HigMay 1, 2024
    risk 0.49cvss 7.5epss 0.01

    lunasvg v2.3.9 was discovered to contain a stack-buffer-underflow at lunasvg/source/layoutcontext.cpp.

  • CVE-2024-55456MedFeb 3, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell

  • CVE-2024-57724MedJan 23, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell.

  • CVE-2024-57723MedJan 23, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over.

  • CVE-2024-57721MedJan 23, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_path_add_path.

  • CVE-2024-57720MedJan 23, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend.

  • CVE-2024-57719MedJan 23, 2025
    risk 0.42cvss 6.5epss 0.00

    lunasvg v3.0.0 was discovered to contain a segmentation violation via the component blend_transformed_tiled_argb.isra.0.

  • CVE-2024-33764MedMay 1, 2024
    risk 0.36cvss 5.5epss 0.00

    lunasvg v2.3.9 was discovered to contain a stack-overflow at lunasvg/source/element.h.

  • CVE-2024-33766MedMay 1, 2024
    risk 0.34cvss 5.3epss 0.01

    lunasvg v2.3.9 was discovered to contain an FPE (Floating Point Exception) at blend_transformed_tiled_argb.isra.0.

  • CVE-2024-33767MedMay 1, 2024
    risk 0.33cvss 5.0epss 0.00

    lunasvg v2.3.9 was discovered to contain a segmentation violation via the component composition_solid_source.