Denial Of Service (DoS) Through NULL Pointer Dereference

libtiff.so is vulnerable to denial of service DoS through null pointer dereference. A malicious user can pass a image file to the TIFFPrintDirectory function in tifprint.c, causing a null pointer dereference that can crash the application...

PT-2018-16255 · Talos +1 · Computerinsel Photoline +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a...

PT-2018-16262 · Talos +1 · Computerinsel Photoline +1

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: A specially crafted TIFF image can cause an out-of-bounds write when processed, allowing an attacker to overwrite arbitrary data and potentially gain code execution by delivering a...

CVE-2018-7659

In OpenText Documentum D2 Webtop v4.6.0030 build 059, a Stored Cross-Site Scripting Vulnerability could potentially be exploited by malicious users to compromise the affected system via a filename of an uploaded image file...

ImageMagick Denial of Service Vulnerability (CNVD-2018-07673)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. The 'DecodeLabImage' and 'EncodeLabImage' functions in the coders/tiff.c file in ImageMagick version 7.0.7-26 Q16 have...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

CVE-2018-8975

The pmmallocarray2 function in lib/util/mallocvar.c in Netpbm through 10.81.03 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted image file, as demonstrated by pbmmask...

Silicon Graphics LibTIFF 'LZWDecodeCompat' Function Heap Buffer Overflow Vulnerability

Silicon Graphics LibTIFF is a library for reading and writing TIFF Tagged Image File Format files from Silicon Graphics, USA. The library contains a number of command-line tools for processing TIFF files. A heap buffer overflow vulnerability exists in the 'LZWDecodeCompat' function of the tiflzw....

USN-3602-1: LibTIFF vulnerabilities

It was discovered that LibTIFF incorrectly handled certain malformed images. If a user or automated system were tricked into opening a specially crafted image, a remote attacker could crash the application, leading to a denial of service, or possibly execute arbitrary code with user privileges...

DEBIAN-CVE-2017-18229

An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows attackers to cause a denial of service via a crafted file, because file size is not properly used to restrict scanline, strip, and tile...

libvips vips_region_generate function denial of service vulnerability

libvips is an open source 2D image processing library . A security vulnerability exists in the 'vipsregiongenerate' function of the region.c file in versions of libvips prior to 8.6.3. A remote attacker can exploit this vulnerability to cause a denial of service with a specially crafted image fil...

GraphicsMagick Assignment Failure Vulnerability

GraphicsMagick has been called the Swiss Army Knife of image processing. The short and compact code provides a robust and efficient collection of tools and libraries to handle reading, writing and manipulating images, supporting over 88 image formats, including the important DPX, GIF, JPEG,...

CVE-2016-9600

JasPer before version 2.0.10 is vulnerable to a null pointer dereference was found in the decoded creation of JPEG 2000 image files. A specially crafted file could cause an application using JasPer to crash...

CVE-2016-9591

JasPer before 2.0.12 is vulnerable to a use-after-free during decoding of certain JPEG 2000 files, which can crash the host process. CVE-2016-9591 is the primary issue; related CVEs in the same family (e.g., CVE-2016-10249, CVE-2016-10251, CVE-2016-8654, CVE-2016-9560, CVE-2016-1867, CVE-2016-208...

CVE-2018-7998

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vipsregiongenerate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race conditi...

Race condition

In libvips before 8.6.3, a NULL function pointer dereference vulnerability was found in the vipsregiongenerate function in region.c, which allows remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted image file. This occurs because of a race conditi...