CVE-2021-36489

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2021-36489
Import Source
https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36489.json
JSON Data
https://api.test.osv.dev/v1/vulns/CVE-2021-36489
Downstream
Published
2023-02-03T18:15:10.140Z
Modified
2025-11-14T12:06:17.957515Z
Severity
  • 6.5 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H CVSS Calculator
Summary
[none]
Details

Buffer Overflow vulnerability in Allegro through 5.2.6 allows attackers to cause a denial of service via crafted PCX/TGA/BMP files to allegro_image addon.

References

Affected packages

Git / github.com/liballeg/allegro5

Affected ranges

Type
GIT
Repo
https://github.com/liballeg/allegro5
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
5e0db6b985eb2714fd276d8808b45f31ea6f52d9

Affected versions

5.*

5.1.10
5.1.11
5.1.3
5.1.4
5.1.5
5.1.6
5.1.7
5.1.8
5.1.9
5.2.6.0

Other

allegro_4_0_branch_point@1892
allegro_5_fork_point@1845
allegro_console_branch_point@3789
merge_HEAD_to_new_api_1@4487
merge_HEAD_to_new_api_2@4916
merge_HEAD_to_new_api_3@4963
new_api_branch_point@4418
v3-9-34@322
v3-9-35@443
v3-9-36@566
v3-9-37@764
v3-9-38@1107
v3-9-39@1366
v3-9-40@1561
v4-0-0@1758
v4-0-1@1892
v4-0-2@1892
v4-0-3@1892
v4-1-0@2243
v4-1-10@3560
v4-1-11@3621
v4-1-12@3911
v4-1-13@4091
v4-1-14@4150
v4-1-15@4357
v4-1-16@4545
v4-1-17@4722
v4-1-18@4829
v4-1-1@2341
v4-1-2@2458
v4-1-3@2511
v4-1-4@2620
v4-1-5@2695
v4-1-6@2723
v4-1-7@2742
v4-1-8@2768
v4-1-9@2943
v4-2-0-beta1@5002
v4-2-0-beta2@5043
v4-2-0-beta3@5108
v4-2-0-beta4@5221
v4-2-0-rc1@5325
v4-2-0-rc2@5374
v4-2-0@5476

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2021-36489.json"