CVE-2025-59801 | Artifex GhostXPS up to 10.5.x xpstiff.c xps_unpredict_tiff samplesperpixel stack-based overflow

Inserito da Angelo Barbosa | Set 22, 2025 | CVE

A vulnerability was found in Artifex GhostXPS up to 10.5.x. It has been declared as critical. Impacted is the function xps_unpredict_tiff of the file xpstiff.c. Executing manipulation of the argument samplesperpixel can lead to stack-based buffer overflow.

This vulnerability appears as CVE-2025-59801. The attack may be performed from remote. There is no available exploit.

It is recommended to upgrade the affected component.

CVE-2025-59801 | Artifex GhostXPS up to 10.5.x xpstiff.c xps_unpredict_tiff samplesperpixel stack-based overflow

Post correlati

CVE-2024-46774 | Linux Kernel up to 6.10.9 Speculative Execution sys_rtas stack-based overflow (68d815648094/0974d03eb479)

CVE-2025-23889 | FooGallery Captions Plugin up to 1.0.2 on WordPress cross site scripting

CVE-2025-11092 | D-Link DIR-823X 250416 set_switch_settings sub_412E7C port command injection

CVE-2022-45362 | Paytm Payment Gateway Plugin up to 2.7.0 on WordPress server-side request forgery