Description
A buffer overflow is present in canvas version <= 1.6.9, which could lead to a Denial of Service or execution of arbitrary code when it processes a user-provided image.
Remediation
References
https://hackerone.com/reports/315037
Related Vulnerabilities
CVE-2017-16190 Vulnerability in npm package dcdcdcdcdc
CVE-2023-33510 Vulnerability in maven package org.jeecgframework.p3:jeecg-p3-biz-chat
CVE-2022-47551 Vulnerability in maven package io.apiman:apiman-manager-api-rest-impl
CVE-2018-12536 Vulnerability in maven package org.eclipse.jetty:jetty-util