Lucene search
K

2249 matches found

CVE
CVE
added 2018/04/12 7:0 p.m.60 views

CVE-2018-3861

Cisco Talos details CVE-2018-3861 as a memory corruption in Computerinsel Photoline 20.53 TIFF parsing. The TIFF tile/scan parsing code can compute an address from image data without proper validation, enabling an out-of-bounds write that overwrites data and can lead to code execution. The TALOS-...

8.8CVSS7.8AI score0.01501EPSS
Exploits1References1Affected Software1
Talos
Talos
added 2018/04/11 12:0 a.m.50 views

Computerinsel Photoline PSD Blending Channels Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PSD parsing functionality of Computerinsel Photoline 20.53. A specially crafted PSD document processed via the application can lead to an out of bounds write overwriting arbitrary data. An attacker can deliver a PSD document to trigger this...

8.8CVSS8.4AI score0.01271EPSS
Exploits0
Talos
Talos
added 2018/04/11 12:0 a.m.52 views

Computerinsel Photoline PCX Decompress Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.2AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.51 views

Computerinsel Photoline TIFF Samples Per Pixel Parsing Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the TIFF parsing functionality of Computerinsel Photoline 20.53. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this...

8.8CVSS8AI score0.01501EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.48 views

Computerinsel Photoline PCX Color Map Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS7.9AI score0.0147EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.44 views

Computerinsel Photoline TIFF Bits Per Pixel Parsing Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the TIFF parsing functionality of Computerinsel Photoline 20.53. A specially crafted TIFF image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a TIFF image to trigger this...

8.8CVSS8.2AI score0.01036EPSS
Exploits1
Talos
Talos
added 2018/04/11 12:0 a.m.49 views

Computerinsel Photoline PCX Run Length Code Execution Vulnerability

Summary A memory corruption vulnerability exists in the PCX-parsing functionality of Computerinsel Photoline 20.53. A specially crafted PCX image processed via the application can lead to an out-of-bounds write, overwriting arbitrary data. An attacker can deliver a PCX image to trigger this...

8.8CVSS8.1AI score0.0147EPSS
Exploits1
Debian
Debian
added 2018/03/28 4:28 p.m.41 views

[SECURITY] [DLA 1322-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.16-1.1+deb7u19 CVE ID : CVE-2017-18219 CVE-2017-18220 CVE-2017-18229 CVE-2017-18230 CVE-2017-18231 CVE-2018-9018 Various security issues were discovered in Graphicsmagick, a collection of image processing tools. CVE-2017-18219 An allocation failure...

8.8CVSS8.9AI score0.2831EPSS
Exploits4
OpenVAS
OpenVAS
added 2018/03/28 12:0 a.m.32 views

Debian: Security Advisory (DLA-1322-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7AI score0.03847EPSS
Exploits4References3
OpenVAS
OpenVAS
added 2018/03/26 12:0 a.m.29 views

Debian: Security Advisory (DLA-1306-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.0188EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2018/03/26 12:0 a.m.15 views

Debian: Security Advisory (DLA-1302-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.03798EPSS
Exploits0References3
Fedora
Fedora
added 2018/03/13 11:23 p.m.40 views

[SECURITY] Fedora 27 Update: leptonica-1.74.4-5.fc27

The library supports many operations that are useful on Document images Natural images Fundamental image processing and image analysis operations Rasterop aka bitblt Affine transforms scaling, translation, rotation, shear on images of arbitrary pixel depth Projective and bi-linear transforms Bina...

9.8CVSS1.4AI score0.03466EPSS
Exploits1
Fedora
Fedora
added 2018/03/13 5:20 p.m.43 views

[SECURITY] Fedora 26 Update: leptonica-1.74.4-5.fc26

The library supports many operations that are useful on Document images Natural images Fundamental image processing and image analysis operations Rasterop aka bitblt Affine transforms scaling, translation, rotation, shear on images of arbitrary pixel depth Projective and bi-linear transforms Bina...

9.8CVSS1.4AI score0.03466EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/03/12 12:0 a.m.32 views

Debian DLA-1306-1 : vips security update

It was discovered that there was NULL function pointer dereference vulnerability in vips, an image processing system for very large images. Remote attackers could cause a denial of service via a specially crafted image file which occurred due to a race condition involving a failed image load and...

7.5CVSS7.1AI score0.0188EPSS
Exploits1References3
Debian
Debian
added 2018/03/11 5:50 p.m.21 views

[SECURITY] [DLA 1306-1] vips security update

Package : vips Version : 7.28.5-1+deb7u2 CVE ID : CVE-2018-7998 Debian Bug : 892589 It was discovered that there was NULL function pointer dereference vulnerability in vips, an image processing system for very large images. Remote attackers could cause a denial of service via a specially-crafted...

7.5CVSS6.8AI score0.0188EPSS
Exploits1
Debian
Debian
added 2018/03/07 6:58 a.m.21 views

[SECURITY] [DLA 1302-1] leptonlib security update

Package : leptonlib Version : 1.69-3.1+deb7u2 CVE ID : CVE-2018-7186 CVE-2018-7440 Debian Bug : 890548 891932 Different flaws have been found in leptonlib, an image processing library. CVE-2018-7186 Leptonica did not limit the number of characters in a %s format argument to fscanf or sscanf, that...

9.8CVSS7.3AI score0.03798EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2018/03/07 12:0 a.m.27 views

Debian DLA-1302-1 : leptonlib security update

Different flaws have been found in leptonlib, an image processing library. CVE-2018-7186 Leptonica did not limit the number of characters in a %s format argument to fscanf or sscanf, that made it possible to remote attackers to cause a denial of service stack-based buffer overflow or possibly hav...

9.8CVSS8AI score0.03798EPSS
Exploits0References4
CNVD
CNVD
added 2018/03/06 12:0 a.m.2 views

GraphicsMagick Denial of Service Vulnerability (CNVD-2018-04994)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'ReadOneJNGImage' function and the 'ReadJNGImage' function of the coders/png.c file in GraphicsMagick version 1.3.26. ...

8.8CVSS6.8AI score0.03847EPSS
Exploits1References1
CVE
CVE
added 2018/03/05 11:0 p.m.45 views

CVE-2018-7713

CVE-2018-7713 affects OpenCV 3.4.1, specifically the validateInputImageSize function in modules/imgcodecs/src/loadsave.cpp. The vulnerability allows remote attackers to trigger a denial of service (assertion failure) when size.width may be greater than 1<

7.5CVSS7.4AI score0.0238EPSS
Exploits0References2Affected Software1
Exploit DB
Exploit DB
added 2018/03/05 12:0 a.m.43 views

ActivePDF Toolkit < 8.1.0.19023 - Multiple Memory Corruptions

ActivePDF Toolkit 8.1.0 multiple RCE Introduction ============ The ActivePDF Toolkit is a Windows library which enhances business processes to stamp, stitch, merge, form-fill, add digital signatures, barcodes to PDF. Both .NET and native APIs are provided. Amongst many other operations, this...

9.8CVSS9.6AI score0.12989EPSS
Exploits5
Rows per page
Query Builder