Divide By Zero
An issue in the Leptonica linked library (v1.79.0) allows attackers to cause an arithmetic exception leading to a Denial of Service (DoS) via a crafted JPEG file.
Advisories for Conan/Leptonica package
2022
2021
Out-of-bounds Read
Leptonica allows a heap-based buffer over-read in findNextBorderPixel in ccbord.c.
Out-of-bounds Read
Leptonica allows a heap-based buffer over-read in rasteropGeneralLow, related to adaptmap_reg.c and adaptmap.c.
Out-of-bounds Read
Leptonica allows a heap-based buffer over-read in pixFewColorsOctcubeQuantMixed in colorquant1.c.
Out-of-bounds Read
Leptonica allows a heap-based buffer over-read in pixReadFromTiffStream, related to tiffio.c.
Always-Incorrect Control Flow Implementation
Leptonica allows a denial of service (application crash) via an incorrect left shift in pixConvert2To8 in pixconv.c.