UBUNTU-CVE-2021-36083
- Source
- https://ubuntu.com/security/CVE-2021-36083
- Import Source
- https://github.com/canonical/ubuntu-security-notices/blob/main/osv/cve/2021/UBUNTU-CVE-2021-36083.json
- JSON Data
- https://api.osv.dev/v1/vulns/UBUNTU-CVE-2021-36083
- Upstream
- Published
- 2021-07-01T03:15:00Z
- Modified
- 2025-10-24T04:50:26Z
- Severity
-
- 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
- Ubuntu - low
- Summary
- [none]
- Details
-
KDE KImageFormats 5.70.0 through 5.81.0 has a stack-based buffer overflow in XCFImageFormat::loadTileRLE.
- References
-
- https://ubuntu.com/security/CVE-2021-36083
- https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=33742
- https://github.com/google/oss-fuzz-vulns/blob/main/vulns/kimageformats/OSV-2021-695.yaml
- https://invent.kde.org/frameworks/kimageformats/commit/297ed9a2fe339bfe36916b9fce628c3242e5be0f
- https://www.cve.org/CVERecord?id=CVE-2021-36083
Affected packages
Ubuntu:16.04:LTS / kimageformats
Package
- Name
- kimageformats
- Purl
- pkg:deb/ubuntu/kimageformats@5.18.0-0ubuntu1?arch=source&distro=xenial
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Ubuntu:18.04:LTS / kimageformats
Package
- Name
- kimageformats
- Purl
- pkg:deb/ubuntu/kimageformats@5.44.0-0ubuntu1?arch=source&distro=bionic
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
5.*
5.38.0-0ubuntu1
5.40.0-0ubuntu1
5.41.0-0ubuntu1
5.42.0-0ubuntu1
5.43.0-0ubuntu1
5.44.0-0ubuntu1
Ubuntu:20.04:LTS / kimageformats
Package
- Name
- kimageformats
- Purl
- pkg:deb/ubuntu/kimageformats@5.68.0-0ubuntu1?arch=source&distro=focal
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affected
Affected versions
5.*
5.62.0-0ubuntu1
5.64.0-0ubuntu1
5.64.0-0ubuntu2
5.65.0-0ubuntu1
5.66.0-0ubuntu1
5.67.0-0ubuntu1
5.68.0-0ubuntu1