MidnightBSD

Advisories for sammycage

CVE-2023-44709

PlutoSVG commit 336c02997277a1888e6ccbbbe674551a0582e5c4 and before was discovered to contain an integer overflow via the component plutosvg_load_from_memory.

CVSS 3.x

Source Score Severity Vector Exploitability Impact
nvd@nist.gov 9.8 CRITICAL CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 3.9 5.9

Products Affected

Vendor Product Version
sammycage plutosvg -
CVE-2024-33764

lunasvg v2.3.9 was discovered to contain a stack-overflow at lunasvg/source/element.h.

Products Affected

Vendor Product Version
sammycage lunasvg 2.3.9