[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2017-2870":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-06T02:55:33.997Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":24,"aliases":34,"duplicate_of":9,"upstream":35,"downstream":36,"duplicates":53,"related":54,"reserved_at":9,"published_at":59,"modified_at":60,"state":61,"summary":62,"references_raw":70,"kevs":92,"epss":93,"epss_history":96,"metrics":344,"affected":361},"CVE-2017-2870","An exploitable integer overflow vulnerability exists in the tiff_image_parse functionality of Gdk-Pixbuf 2.36.6 when compiled with Clang. A specially crafted tiff file can cause a heap-overflow resulting in remote code execution. An attacker can send a file or a URL to trigger this vulnerability.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-190","Integer Overflow or Wraparound","The product performs a calculation that can\n         produce an integer overflow or wraparound when the logic\n         assumes that the resulting value will always be larger than\n         the original value. This occurs when an integer value is\n         incremented to a value that is too large to store in the\n         associated representation. When this occurs, the value may\n         become a very small or negative number.","weakness","Stable","Base","Medium",[20],{"id":21,"name":22,"techniques":23},"CAPEC-92","Forced Integer Overflow",[],[25],{"_key":26,"name":27,"source":28,"url":29,"maturity":30,"reliability_score":31,"verified":32,"type":9,"platforms":33,"requires_auth":9,"exploitdb":9,"metasploit":9},"REF_A7FDDD97B1E9DD3F","Exploit Reference (talosintelligence.com)","reference","https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0377","unknown",0.2,false,[],[],[],[37,39,41,43,45,47,49,51],{"_key":38},"SUSE-SU-2017:2381-1",{"_key":40},"SUSE-SU-2018:2470-1",{"_key":42},"OPENSUSE-SU-2024:10779-1",{"_key":44},"DLA-2043-1",{"_key":46},"MGASA-2018-0016",{"_key":48},"UBUNTU-CVE-2017-2870",{"_key":50},"USN-3418-1",{"_key":52},"DEBIAN-CVE-2017-2870",[],[55,56,57,58],{"_key":38},{"_key":40},{"_key":42},{"_key":46},"2017-09-05T18:00:00.000Z","2024-09-16T17:48:57.369Z","Modified",{"cisa_kev":32,"cisa_ransomware":32,"cisa_vendor":9,"epss_severity":63,"epss_score":64,"severity":65,"severity_score":66,"severity_version":67,"severity_source":68,"severity_vector":69,"severity_status":61},"low",0.02329,"high",8.8,"v3.0","cve.org","CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",[71,79,86],{"url":72,"sources":73,"tags":75},"http://www.securityfocus.com/bid/100541",[68,74],"nvd",[76,77,78],"VDB Entry","X Refsource BID","Broken Link",{"url":80,"sources":81,"tags":82},"https://lists.debian.org/debian-lts-announce/2019/12/msg00025.html",[68,74],[83,84,85],"Mailing List","X Refsource MLIST","Third Party Advisory",{"url":29,"sources":87,"tags":88},[68,74],[89,90,91,85],"X Refsource MISC","Exploit","Technical Description",[],{"date":94,"score":64,"percentile":95},"2026-06-05",0.85144,[97,101,104,106,109,112,115,117,119,122,125,128,130,133,135,138,141,143,146,149,152,154,157,159,161,164,167,170,173,176,179,182,185,188,191,194,197,200,203,206,209,211,214,216,219,222,225,228,231,234,236,239,242,245,248,251,254,257,259,262,265,267,270,273,275,277,280,282,285,287,289,292,294,296,299,302,305,308,311,313,316,319,322,325,327,329,332,335,338,341],{"date":98,"score":99,"percentile":100},"2025-11-04",0.0313,0.8634,{"date":102,"score":99,"percentile":103},"2025-11-05",0.86343,{"date":105,"score":99,"percentile":100},"2025-11-06",{"date":107,"score":99,"percentile":108},"2025-11-07",0.86349,{"date":110,"score":99,"percentile":111},"2025-11-08",0.86352,{"date":113,"score":99,"percentile":114},"2025-11-09",0.86347,{"date":116,"score":99,"percentile":114},"2025-11-10",{"date":118,"score":99,"percentile":111},"2025-11-11",{"date":120,"score":99,"percentile":121},"2025-11-12",0.86358,{"date":123,"score":99,"percentile":124},"2025-11-13",0.86363,{"date":126,"score":99,"percentile":127},"2025-11-14",0.86366,{"date":129,"score":99,"percentile":121},"2025-11-15",{"date":131,"score":99,"percentile":132},"2025-11-16",0.86359,{"date":134,"score":99,"percentile":108},"2025-11-17",{"date":136,"score":99,"percentile":137},"2025-11-18",0.85622,{"date":139,"score":99,"percentile":140},"2025-11-19",0.85625,{"date":142,"score":99,"percentile":140},"2025-11-20",{"date":144,"score":99,"percentile":145},"2025-11-21",0.8636,{"date":147,"score":99,"percentile":148},"2025-11-22",0.86354,{"date":150,"score":99,"percentile":151},"2025-11-23",0.86348,{"date":153,"score":99,"percentile":108},"2025-11-24",{"date":155,"score":99,"percentile":156},"2025-11-25",0.86351,{"date":158,"score":99,"percentile":108},"2025-11-26",{"date":160,"score":99,"percentile":156},"2025-11-27",{"date":162,"score":99,"percentile":163},"2025-11-28",0.86333,{"date":165,"score":99,"percentile":166},"2025-11-29",0.86404,{"date":168,"score":99,"percentile":169},"2025-11-30",0.86402,{"date":171,"score":99,"percentile":172},"2025-12-01",0.86456,{"date":174,"score":99,"percentile":175},"2025-12-02",0.86458,{"date":177,"score":99,"percentile":178},"2025-12-03",0.86457,{"date":180,"score":99,"percentile":181},"2025-12-04",0.86395,{"date":183,"score":99,"percentile":184},"2025-12-05",0.86397,{"date":186,"score":99,"percentile":187},"2025-12-06",0.86393,{"date":189,"score":99,"percentile":190},"2025-12-07",0.86383,{"date":192,"score":99,"percentile":193},"2025-12-08",0.86384,{"date":195,"score":99,"percentile":196},"2025-12-09",0.86391,{"date":198,"score":99,"percentile":199},"2025-12-10",0.86412,{"date":201,"score":99,"percentile":202},"2025-12-11",0.86418,{"date":204,"score":99,"percentile":205},"2025-12-12",0.8642,{"date":207,"score":99,"percentile":208},"2025-12-13",0.86416,{"date":210,"score":99,"percentile":199},"2025-12-14",{"date":212,"score":99,"percentile":213},"2025-12-15",0.8641,{"date":215,"score":99,"percentile":202},"2025-12-16",{"date":217,"score":99,"percentile":218},"2025-12-17",0.86421,{"date":220,"score":99,"percentile":221},"2025-12-18",0.8643,{"date":223,"score":99,"percentile":224},"2025-12-19",0.86433,{"date":226,"score":99,"percentile":227},"2025-12-20",0.86431,{"date":229,"score":99,"percentile":230},"2025-12-21",0.86434,{"date":232,"score":99,"percentile":233},"2025-12-22",0.86427,{"date":235,"score":99,"percentile":227},"2025-12-23",{"date":237,"score":99,"percentile":238},"2025-12-24",0.86437,{"date":240,"score":99,"percentile":241},"2025-12-25",0.86448,{"date":243,"score":99,"percentile":244},"2025-12-26",0.86451,{"date":246,"score":99,"percentile":247},"2025-12-27",0.86489,{"date":249,"score":99,"percentile":250},"2025-12-28",0.86444,{"date":252,"score":99,"percentile":253},"2025-12-29",0.86438,{"date":255,"score":99,"percentile":256},"2025-12-30",0.86446,{"date":258,"score":99,"percentile":172},"2025-12-31",{"date":260,"score":99,"percentile":261},"2026-01-01",0.86513,{"date":263,"score":99,"percentile":264},"2026-01-02",0.86515,{"date":266,"score":99,"percentile":264},"2026-01-03",{"date":268,"score":99,"percentile":269},"2026-01-04",0.86455,{"date":271,"score":99,"percentile":272},"2026-01-05",0.86453,{"date":274,"score":99,"percentile":269},"2026-01-06",{"date":276,"score":99,"percentile":172},"2026-01-07",{"date":278,"score":99,"percentile":279},"2026-01-08",0.86463,{"date":281,"score":99,"percentile":279},"2026-01-09",{"date":283,"score":99,"percentile":284},"2026-01-10",0.86462,{"date":286,"score":99,"percentile":172},"2026-01-11",{"date":288,"score":99,"percentile":272},"2026-01-12",{"date":290,"score":99,"percentile":291},"2026-01-13",0.86449,{"date":293,"score":99,"percentile":279},"2026-01-14",{"date":295,"score":99,"percentile":279},"2026-01-15",{"date":297,"score":99,"percentile":298},"2026-01-16",0.86466,{"date":300,"score":99,"percentile":301},"2026-01-17",0.86468,{"date":303,"score":99,"percentile":304},"2026-01-18",0.8647,{"date":306,"score":99,"percentile":307},"2026-01-19",0.86465,{"date":309,"score":99,"percentile":310},"2026-01-20",0.8646,{"date":312,"score":99,"percentile":307},"2026-01-21",{"date":314,"score":99,"percentile":315},"2026-01-22",0.86472,{"date":317,"score":99,"percentile":318},"2026-01-23",0.86487,{"date":320,"score":99,"percentile":321},"2026-01-24",0.86495,{"date":323,"score":99,"percentile":324},"2026-01-25",0.8649,{"date":326,"score":99,"percentile":318},"2026-01-26",{"date":328,"score":99,"percentile":247},"2026-01-27",{"date":330,"score":99,"percentile":331},"2026-01-28",0.86491,{"date":333,"score":99,"percentile":334},"2026-01-29",0.86493,{"date":336,"score":99,"percentile":337},"2026-01-30",0.86497,{"date":339,"score":99,"percentile":340},"2026-01-31",0.86498,{"date":342,"score":99,"percentile":343},"2026-02-01",0.86565,[345,350],{"source":68,"cvss_v2_0":9,"cvss_v3_0":346,"cvss_v3_1":9,"cvss_v4_0":9},{"baseScore":66,"baseSeverity":347,"vectorString":69,"impactScore":348,"exploitabilityScore":349},"HIGH",9.8,7.2,{"source":74,"cvss_v2_0":351,"cvss_v3_0":356,"cvss_v3_1":357,"cvss_v4_0":9},{"baseScore":352,"baseSeverity":9,"vectorString":353,"impactScore":354,"exploitabilityScore":355},6.8,"AV:N/AC:M/Au:N/C:P/I:P/A:P",6.4,8.6,{"baseScore":66,"baseSeverity":347,"vectorString":69,"impactScore":348,"exploitabilityScore":349},{"baseScore":358,"baseSeverity":347,"vectorString":359,"impactScore":348,"exploitabilityScore":360},7.8,"CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",4.6,[362,371],{"ecosystem":9,"name":363,"vendor":364,"product":365,"cpe_part":366,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":367},"debian linux","debian","debian_linux","o",[368],{"version":369,"is_range":32,"range_type":370,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"8.0","cpe",{"ecosystem":9,"name":372,"vendor":373,"product":372,"cpe_part":374,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":375},"gdk-pixbuf","gnome","a",[376,379],{"version":377,"is_range":32,"range_type":68,"version_start":377,"version_start_type":378,"version_end":377,"version_end_type":378,"fixed_in":9},"2.36.6 commit: aba8d88798dfc2f3856ea0ddda14b06174bbb2bc compiled with clang -O3 flag libtiff 4.0.6","including",{"version":380,"is_range":32,"range_type":370,"version_start":9,"version_start_type":9,"version_end":9,"version_end_type":9,"fixed_in":9},"2.36.6"]