LibTIFF Security Vulnerability

LibTIFF is a library for reading and writing TIFF Tagged Image File Format files. The library contains some command line tools for working with TIFF files. A security vulnerability exists in LibTIFF, which stems from a lack of memory, where passing a carefully crafted tiff file to the TIFFOpen AP...

USN-6512-1: LibTIFF vulnerabilities

It was discovered that LibTIFF could be made to run into an infinite loop. If a user or an automated system were tricked into opening a specially crafted image file, an attacker could possibly use this issue to cause a denial of service. CVE-2022-40090 It was discovered that LibTIFF could be made...

Apple macOS Hydra Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Hydra library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the Hydr...

Apple macOS Hydra Parsing Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple macOS. Interaction with the Hydra library is required to exploit this vulnerability but attack vectors may vary depending on the implementation. The specific flaw exists within the Hydr...

The vulnerability of the OpenImageIO image processing library, related to uncontrolled recursion, allows a hacker to cause a service failure.

The vulnerability of the OpenImageIO image processing library is related to uncontrolled recursion. Exploiting this vulnerability could allow a malicious actor to cause service interruptions through the use of a specially created image file...

Improper Authorization

prestashop/blockreassurance is vulnerable to Improper Authorization. The vulnerability arises due to a lack of validation during an image file check. While adding a block, an attacker can potentially enter the path of any file in the project instead of the image. When deleting the block, the file...

libtiff: Heap-based buffer overflow in tools/pal2rgb.c can lead to denial of service

A vulnerability was found in LibTIFF, where a heap-based buffer overflow in the pal2rgb function in tools/pal2rgb.c can lead to a denial of service, a remote attacker could exploit this flaw by persuading a victim to open a specially crafted file, causing the application to crash...

CVE-2023-44398

An out-of-bounds write vulnerability has been identified in the Exiv2 library within the BmffImage::brotliUncompress function. This issue arises when Exiv2 is employed to extract metadata from a manipulated image file. An attacker could potentially exploit the vulnerability to gain code execution...

Design/Logic Flaw

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds write was found in Exiv2 version v0.28.0. The vulnerable function, BmffImage::brotliUncompress, is new in v0.28.0, so earlier versions of Exiv2 are not...

PYSEC-2023-233

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds write was found in Exiv2 version v0.28.0. The vulnerable function, BmffImage::brotliUncompress, is new in v0.28.0, so earlier versions of Exiv2 are not...

CVE-2023-44398 Out-of-bounds write in exiv2

Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. An out-of-bounds write was found in Exiv2 version v0.28.0. The vulnerable function, BmffImage::brotliUncompress, is new in v0.28.0, so earlier versions of Exiv2 are not...

CVE-2023-47271

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

Design/Logic Flaw

PKP-WAL aka PKP Web Application Library or pkp-lib before 3.3.0-16, as used in Open Journal Systems OJS and other products, does not verify that the file named in an XML document used for the native import/export plugin is an image file, before trying to use it for an issue cover image...

PKP Web Application Library Security Vulnerability

The PKP Web Application Library is a library shared by PKP's Open Journal System OJS, Open Conference System OCS, Open Monograph Press OMP, Open Preprint System OPS, and Open Harvester System OHS. A security vulnerability exists in the PKP Web Application Library PKP-WAL prior to version 3.3.0-16...

Rocky Linux 8 : exiv2 (RLSA-2021:4173)

The remote Rocky Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:4173 advisory. - Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was...

Fedora 37 : stb / usd (2023-a93c06a1d9)

The remote Fedora 37 host has packages installed that are affected by multiple vulnerabilities as referenced in the FEDORA-2023-a93c06a1d9 advisory. Security fix for CVE-2023-45661 CVE-2023-45662 CVE-2023-45663 CVE-2023-45664 CVE-2023-45666 CVE-2023-45667 CVE-2023-45675 CVE-2023-43281 Tenable has...

CVE-2023-3164

A heap-buffer-overflow vulnerability was found in LibTIFF, in extractImageSection at tools/tiffcrop.c:7916 and tools/tiffcrop.c:7801. This flaw allows attackers to cause a denial of service via a crafted tiff file...

XnView Classic Security Vulnerability

XnView Classic is a suite of image viewing software. The software can be used to view, convert, organize and edit graphic and video files. A security vulnerability exists in XnView Classic version v.2.51.5 that originates from a vulnerability that allows a local attacker to execute arbitrary code...

Out-of-bounds Read

libstb.so is vulnerable to Out-of-bounds Read. The vulnerability is caused when stbisetflipverticallyonload is set to TRUE and reqcomp is set to a number that does not match the real number of components per pixel, the library attempts to flip the image vertically. An attacker can craft an image...

Double Free

stb is vulnerable to Double Free. The vulnerability is due to the stbiloadgifmainoutofmem function.This allows an attacker to exploit a double-free condition by using a specially crafted image file...