Browse all 5 CVE security advisories affecting Netpbm. AI-powered Chinese analysis, POCs, and references for each vulnerability.
Netpbm serves as a fundamental toolkit for converting and manipulating image formats across Unix-like systems. Historically, it has been susceptible to multiple remote code execution vulnerabilities due to buffer overflows in parsing functions, alongside cross-site scripting issues in web-based implementations. The project's five recorded CVEs primarily involve memory corruption flaws in format conversion utilities. While no major security incidents have been widely documented, the consistent presence of memory-related vulnerabilities in its image processing components suggests potential risks for systems handling untrusted image files. The library's widespread use in graphics pipelines means vulnerabilities could impact multiple applications depending on its implementation.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2017-2579 | Netpbm 缓冲区错误漏洞 — netpbmCWE-125 | 7.8 | - | 2018-07-27 |
| CVE-2017-2580 | Netpbm 缓冲区错误漏洞 — netpbmCWE-787 | 7.8 | - | 2018-07-27 |
| CVE-2017-2581 | Netpbm 缓冲区错误漏洞 — netpbmCWE-787 | 7.8 | - | 2018-07-27 |
| CVE-2017-2586 | Netpbm 安全漏洞 — netpbmCWE-476 | 5.5 | - | 2018-07-27 |
| CVE-2017-2587 | Netpbm 资源管理错误漏洞 — netpbmCWE-770 | 5.5 | - | 2018-07-27 |
This page lists every published CVE security advisory associated with Netpbm. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.