Lucene search
K

2249 matches found

Fedora
Fedora
added 2017/07/08 4:54 p.m.28 views

[SECURITY] Fedora 26 Update: GraphicsMagick-1.3.26-1.fc26

GraphicsMagick is a comprehensive image processing package which is initial ly based on ImageMagick 5.5.2, but which has undergone significant re-work by the GraphicsMagick Group to significantly improve the quality and performan ce of the software...

5.5CVSS2.7AI score0.01537EPSS
Exploits0
OSV
OSV
added 2017/07/03 1:29 a.m.8 views

CVE-2017-10800

When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of service OOM in ReadMATImage if the size specified for a MAT Object is larger than the actual amount of data...

5.5CVSS8.4AI score
Exploits0References3
CNVD
CNVD
added 2017/07/03 12:0 a.m.5 views

GraphicsMagick 'ReadDPXImage()' Denial of Service Vulnerability

GraphicsMagick has been called the Swiss Army Knife of image processing. The short and compact code provides a robust and efficient collection of tools and libraries to handle reading, writing and manipulating images, supporting over 88 image formats, including the important DPX, GIF, JPEG,...

5.5CVSS7AI score0.01265EPSS
Exploits0References1
OSV
OSV
added 2017/07/02 10:29 p.m.3 views

UBUNTU-CVE-2017-10794

When GraphicsMagick 1.3.25 processes an RGB TIFF picture with metadata indicating a single sample per pixel in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode...

5.5CVSS6.8AI score0.01537EPSS
Exploits0References5
OSV
OSV
added 2017/07/02 10:29 p.m.8 views

CVE-2017-10794

When GraphicsMagick 1.3.25 processes an RGB TIFF picture with metadata indicating a single sample per pixel in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode...

5.5CVSS9.4AI score
Exploits0References4
CNVD
CNVD
added 2017/06/07 12:0 a.m.5 views

ImageMagick 'coders/psd.c' denial of service vulnerability (CNVD-2017-09877)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'ReadPSDChannel' function of the coders/psd.c file in ImageMagick...

6.5CVSS6.6AI score0.01538EPSS
Exploits0References1
Gentoo Linux
Gentoo Linux
added 2017/06/06 12:0 a.m.30 views

ImageWorsener: Multiple vulnerabilities

Background ImageWorsener is a cross-platform command-line utility and library for image scaling and other image processing. Description Multiple vulnerabilities have been discovered in ImageWorsener. Please review the CVE identifiers referenced below for details. Impact A remote attacker could...

8.8CVSS3.6AI score0.02569EPSS
Exploits1
Ubuntu
Ubuntu
added 2017/05/30 2:4 p.m.32 views

USN-3212-2: LibTIFF regression

USN-3212-1 fixed vulnerabilities in LibTIFF. Unfortunately, some of the security patches were misapplied, which caused a regression when processing certain images. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that LibTIFF...

6.2AI score
Exploits0References1
CNVD
CNVD
added 2017/05/25 12:0 a.m.6 views

ImageWorsener Denial of Service Vulnerability (CNVD-2017-08095)

ImageWorsener is a set of image scaling and processing utilities. A security vulnerability exists in the 'iwgetui16le' function in the imagew-util.c:405:23 of the libimageworsener.a file in ImageWorsener version 1.3.1. A remote attacker can exploit this vulnerability to cause a denial of service...

6.5CVSS7AI score0.01584EPSS
Exploits0References1
OSV
OSV
added 2017/05/22 12:0 a.m.6 views

UBUNTU-CVE-2017-9141

In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c...

6.5CVSS6.7AI score0.02174EPSS
Exploits0References3
OSV
OSV
added 2017/05/21 7:29 p.m.45 views

CVE-2017-9117

In LibTIFF 4.0.6 and possibly other versions, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, as demonstrated by a heap-based buffer over-read in bmp2tiff. NOTE: mentioning bmp2tiff does not imply that the...

9.8CVSS4.4AI score
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2017/04/20 6:59 p.m.3 views

CVE-2016-7514

The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted PSD file...

6.5CVSS5.5AI score0.03099EPSS
Exploits0References10
OSV
OSV
added 2017/04/12 2:59 p.m.1 views

CVE-2017-3036

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in image conversion related to processing of the PCX picture exchange file format. Successful exploitation could lead to arbitrary code executi...

7.8CVSS6AI score0.04458EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2017/04/12 12:0 a.m.70 views

Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4014794)

This host is missing an important security update according to Microsoft KB4014794. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

5CVSS6.8AI score0.10117EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2017/04/12 12:0 a.m.44 views

Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4015383)

This host is missing an important security update according to Microsoft Security update KB4015383 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

5CVSS6.8AI score0.10117EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2017/04/11 7:0 a.m.57 views

libjpeg Information Disclosure Vulnerability

An information disclosure vulnerability exists within the open-source libjpeg image-processing library where it fails to properly handle objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker who successful...

5CVSS3.1AI score0.10117EPSS
Exploits0
Veracode
Veracode
added 2017/04/11 1:59 a.m.24 views

Denial Of Service (DoS) Via Image Feature Extraction

openCV is vulnerable to denial of service DoS attacks. The attacks are possible when a seed image is processed to extract features with openCV. When freeing a matrix allocated for image processing, it leads to segmentation fault through vectors involving corrupt chunks...

5.5CVSS4.8AI score0.01031EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2017/04/10 5:0 p.m.38 views

CVE-2017-7623

The CVE-2017-7623 entry corresponds to ImageWorsener 1.3.0’s iwmiffr_convert_row32 function in imagew-miff.c, where a crafted file can trigger a heap-based buffer over-read leading to denial of service. Affected component: libimageworsener.a inside ImageWorsener 1.3.0. The connected documents con...

5.5CVSS5.4AI score0.01267EPSS
Exploits0References2Affected Software1
CNVD
CNVD
added 2017/04/10 12:0 a.m.3 views

ImageWorsener 'iwgif_record_pixel()' function remote heap buffer overflow vulnerability

ImageWorsener is a cross-platform command line utility and library for image scaling and other image processing. It has full support for PNG, JPEG, and BMP formats, experimental support for WebP, read-only support for GIF, and limited support for some other image formats. A remote heap buffer...

5.5CVSS6.1AI score0.01085EPSS
Exploits0References1
OSV
OSV
added 2017/04/09 2:59 p.m.1 views

DEBIAN-CVE-2017-7595

The JPEGSetupEncode function in tiffjpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted image...

5.5CVSS7.2AI score0.01374EPSS
Exploits0References1
Rows per page
Query Builder