148 matches found
EUVD-2004-1720
Malware in sbrugna...
EUVD-2008-4778
Malware in sbrugna...
EUVD-2010-1478
Malware in sbrugna...
EUVD-2009-0584
Malware in sbrugna...
EUVD-2021-7734
Malicious code in bioql PyPI...
Heap-based Buffer Overflow
Overview Magick.NET-Q16-HDRI-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Heap-based Buffer Overflow
Overview Magick.NET-Q8-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...
Linux Distros Unpatched Vulnerability : CVE-2025-48797
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GIMP when processing certain TGA image files. If a user opens one of these image files that has been specially crafted by an attacker, GIMP...
UBUNTU-CVE-2025-53644
OpenCV is an Open Source Computer Vision Library. Versions prior to 4.12.0 have an uninitialized pointer variable on stack that may lead to arbitrary heap buffer write when reading crafted JPEG images. Version 4.12.0 fixes the vulnerability...
CVE-2023-39147
An arbitrary file upload vulnerability in Uvdesk 1.1.3 allows attackers to execute arbitrary code via uploading a crafted image file...
CVE-2020-23572
BEESCMS v4.0 was discovered to contain an arbitrary file upload vulnerability via the component /admin/upload.php. This vulnerability allows attackers to execute arbitrary code via a crafted image file...
CVE-2020-21573
An issue was discoverered in in abhijitnathwani image-processing v0.1.0, allows local attackers to cause a denial of service via a crafted image file...
Linux Distros Unpatched Vulnerability : CVE-2021-37620
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in...
Linux Distros Unpatched Vulnerability : CVE-2021-37615
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A null pointer dereference was found ...
Exiv2 资源管理错误漏洞
Exiv2 is a suite of C++ libraries and command line applications for managing image metadata from the individual developer Andreas Huggel. The product provides the ability to read and write image metadata in a variety of formats including EXIF, IPTC and XMP. A resource management error vulnerabili...
Medium: openjpeg2
Issue Overview: openjpeg: denail of service via crafted image file CVE-2023-39328 Affected Packages: openjpeg2 Issue Correction: Run dnf update openjpeg2 --releasever 2023.6.20250123 to update your system. New Packages: aarch64: openjpeg2-2.4.0-11.amzn2023.0.4.aarch64 ...
RHEL 7 : gdk-pixbuf (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - gdk-pixbuf: Integer underflow in io-icns.c CVE-2017-6313 - The OneLine32 function in io-ico.c in gdk-pixb...
The vulnerability of the jpc_streamlistremove function (src/libjasper/jpc/jpc_dec.c:2407) in the JPC library, allowing a hacker to trigger a service failure.
The vulnerability of the jpcstreamlistremove function src/libjasper/jpc/jpcdec.c:2407 in the JPC library is related to improper cleaning or release of resources. Exploiting this vulnerability could allow an attacker to cause service failures by using specially created image files...
ROS-2-2162
2.2162 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...
OESA-2024-1054 metadata-extractor2 security update
Metadata Extractor is a straightforward Java library for reading metadata from image files. Security Fixes: metadata-extractor up to 2.16.0 can throw various uncaught exceptions while parsing a specially crafted JPEG file, which could result in an application crash. This could be used to mount a...