VYPR

libpag

by Tencent

CVEs (2)

  • CVE-2024-34408May 3, 2024
    risk 0.00cvss epss 0.00

    Tencent libpag through 4.3.51 has an integer overflow in DecodeStream::checkEndOfFile() in codec/utils/DecodeStream.cpp via a crafted PAG (Portable Animated Graphics) file.

  • CVE-2024-33078May 1, 2024
    risk 0.00cvss epss 0.01

    Tencent Libpag v4.3 is vulnerable to Buffer Overflow. A user can send a crafted image to trigger a overflow leading to remote code execution.