CVE-2024-34408 | Tencent libpag up to 4.3.51 PAG File DecodeStream.cpp checkEndOfFile integer overflow

Posted by Angelo Barbosa | May 3, 2024 | CVE

A vulnerability classified as critical has been found in Tencent libpag up to 4.3.51. This affects the function DecodeStream::checkEndOfFile of the file codec/utils/DecodeStream.cpp of the component PAG File Handler. The manipulation leads to integer overflow.

This vulnerability is uniquely identified as CVE-2024-34408. The attack can only be done within the local network. There is no exploit available.

CVE-2024-34408 | Tencent libpag up to 4.3.51 PAG File DecodeStream.cpp checkEndOfFile integer overflow

Related Posts

CVE-2024-30602 | Tenda FH1203 2.0.1.6 /goform/openSchedWifi setSchedWifi schedStartTime stack-based overflow

CVE-2024-43252 | Crew HRM Plugin up to 1.1.1 on WordPress deserialization

CVE-2024-29188 | WiX Toolset up to 3.14.0/4.0.4 on Windows Uninstallation RemoveFolderEx link following (GHSA-jx4p-m4wm-vvjg)

CVE-2023-5500 | Frauscher FDS102 2.10.0/2.10.1 code injection (VDE-2023-049)