CVE-2024-57720

Medium CVSS: 6.5

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_blend.

Vendor

Product

CWE

Yayın Tarihi

2025-01-23 01:15:26

Güncelleme

2025-04-15 17:13:10

Source Identifier

cve@mitre.org

KEV Date Added

CWE-653 Lunasvg MEDIUM Sammycage 2025

https://github.com/keepinggg/poc/blob/main/poc_of_lunasvg_3.1.0 https://github.com/sammycage/lunasvg/issues/209

Medium

CVE-2024-55456

lunasvg v3.0.1 was discovered to contain a segmentation violation via the component gray_find_cell

High

CVE-2024-57722

lunasvg v3.0.0 was discovered to contain a allocation-size-too-big bug via the component plutovg_surface_create.

Medium

CVE-2024-57723

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component composition_source_over.

Medium

CVE-2024-57724

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component gray_record_cell.

Medium

CVE-2024-57719

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component blend_transformed_tiled_argb.isra.0.

Medium

CVE-2024-57721

lunasvg v3.0.0 was discovered to contain a segmentation violation via the component plutovg_path_add_path.