CVE-2025-59820 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kis_tga_import.cpp (aka KisTgaImpor…
Medium CVSS: 6.7

CVE-2025-59820

In KDE Krita before 5.2.13, loading a manipulated TGA file could result in a heap-based buffer overflow in plugins/impex/tga/kis_tga_import.cpp (aka KisTgaImport). Control flow proceeds even when a number of pixels becomes negative.
Vendor
-
Product
-
CWE
CWE-1284
Yayın Tarihi
2025-11-26 06:15:45
Güncelleme
2025-12-06 03:15:59
Source Identifier
cve@mitre.org
KEV Date Added
-

Kategoriler

CWE-1284 MEDIUM 2025

Referanslar

https://invent.kde.org/graphics/krita/ https://invent.kde.org/graphics/krita/-/commit/6d3651ac4df88efb68e013d21061de9846e83fe8 https://kde.org/info/security/advisory-20250929-1.txt https://lists.debian.org/debian-lts-announce/2025/12/msg00006.html