Lucene search
K

16 matches found

EUVD
EUVD
added 2026/05/14 6:54 p.m.11 views

EUVD-2026-30404

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, a heap-based buffer overflow in the HEIF decoder of OpenImageIO allows out-of-bounds writes via crafted images due to a subimage metada...

8.5CVSS6.1AI score0.00188EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2026/04/20 12:0 a.m.6 views

Debian dsa-6215 : gimp - security update

The remote Debian 12 / 13 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-6215 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6215-1 [email protected]...

7.8CVSS7.6AI score0.00755EPSS
Exploits0References11
Fedora
Fedora
added 2025/06/25 1:44 a.m.9 views

[SECURITY] Fedora 41 Update: qt6-qtimageformats-6.8.3-2.fc41

The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats, including: MNG, TGA,...

5.5CVSS7.3AI score0.00203EPSS
Exploits0
Fedora
Fedora
added 2025/06/11 2:46 a.m.10 views

[SECURITY] Fedora 42 Update: qt6-qtimageformats-6.9.1-1.fc42

The core Qt Gui library by default supports reading and writing image files of the most common file formats: PNG, JPEG, BMP, GIF and a few more, ref. Reading and Writing Image Files. The Qt Image Formats add-on module provides optional support for other image file formats, including: MNG, TGA,...

8.4CVSS7.3AI score0.00309EPSS
Exploits0
OpenVAS
OpenVAS
added 2024/06/07 12:0 a.m.11 views

Fedora: Security Advisory for qt5-qtimageformats (FEDORA-2024-2e27372d4c)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS10AI score0.0097EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/06/28 12:0 a.m.6 views

The vulnerability of the software lies in the ability to increase the effective working time of components and equipment, as well as optimize resource utilization in the SAP 3D Visual Enterprise Viewer. This vulnerability stems from the possibility of writing data beyond the buffer in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the software for increasing the effective working time of components and equipment, as well as optimizing resource usage in the SAP 3D Visual Enterprise Viewer, is related to the ability to write data beyond the buffer in memory. Exploiting this vulnerability allows a malicio...

7.8CVSS7.8AI score0.00553EPSS
Exploits0References2Affected Software1
Mageia
Mageia
added 2023/04/24 12:20 a.m.50 views

Updated openimageio packages fix security vulnerability

A heap out-of-bounds read vulnerability exists in the RLA format parser of OpenImageIO master-branch-9aeece7a and v2.3.19.0. More specifically, in the way run-length encoded byte spans are handled. A malformed RLA file can lead to an out-of-bounds read of heap metadata which can result in sensiti...

9.8CVSS8.3AI score0.01962EPSS
Exploits25References6
CNNVD
CNNVD
added 2022/12/22 12:0 a.m.3 views

OpenImageIO 安全漏洞

OpenImageIO is an image read and write library that also provides several tools and applications. openImageIO is vulnerable to a heap out-of-bounds read vulnerability. An attacker can exploit this vulnerability to read heap metadata out of bounds via specially crafted RLA files, which can lead to...

5.3CVSS6.6AI score0.00787EPSS
Exploits1References7
OSV
OSV
added 2022/10/07 6:15 p.m.3 views

CVE-2021-40164

A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...

7.8CVSS6.3AI score0.00246EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/10/07 6:15 p.m.3 views

CVE-2021-40164

A heap-based buffer overflow could occur while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...

7.8CVSS7.6AI score0.00246EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/10/07 12:0 a.m.4 views

Autodesk Image Processing 缓冲区错误漏洞

Autodesk Image Processing is an image processing software from the US-based Autodesk Corporation. A security vulnerability exists in Autodesk Image Processing that originates from a possible heap-based buffer overflow when parsing TIFF, PICT, TGA, or RLC files, which can be exploited by an attack...

7.8CVSS8AI score0.00246EPSS
Exploits0References2
OSV
OSV
added 2021/12/20 9:15 p.m.4 views

CVE-2021-43023

Adobe Premiere Rush version 1.5.16 and earlier is affected by a memory corruption vulnerability due to insecure handling of a malicious EPS/TIFF file, potentially resulting in arbitrary code execution in the context of the current user. User interaction is required to exploit this vulnerability...

7.8CVSS6.5AI score0.02328EPSS
Exploits0References1
OSV
OSV
added 2021/07/09 3:15 p.m.1 views

CVE-2021-27036

A maliciously crafted PCX, PICT, RCL, TIF, BMP, PSD or TIFF file can be used to write beyond the allocated buffer while parsing PCX, PDF, PICT, RCL, BMP, PSD or TIFF files. This vulnerability can be exploited to execute arbitrary code...

7.8CVSS6.3AI score
Exploits0References1
CNVD
CNVD
added 2021/03/04 12:0 a.m.11 views

Pillow Denial of Service Vulnerability (CNVD-2021-14762)

Python Imaging Library PIL is a free library for the Python programming language that supports opening, manipulating, and saving a wide range of image file formats.Pillow is a PIL branch. A denial of service vulnerability exists in Pillow versions prior to 8.1.1. The vulnerability stems from not...

7.5CVSS6.5AI score0.0317EPSS
Exploits0References1
Fedora
Fedora
added 2009/08/12 8:53 p.m.26 views

[SECURITY] Fedora 11 Update: ocaml-camlimages-3.0.1-7.fc11.2

CamlImages is an image processing library for Objective CAML, which provide s: basic functions for image processing and loading/saving, various image file formats hence providing a translation facility from format to format, and an interface with the Caml graphics library allows to display images...

7.5CVSS0.7AI score0.02612EPSS
Exploits0
OpenVAS
OpenVAS
added 2008/01/17 12:0 a.m.22 views

Debian Security Advisory DSA 714-1 (kdelibs)

The remote host is missing an update to kdelibs announced via advisory DSA 714-1. OpenVAS Vulnerability Test $Id: deb7141.nasl 6616 2017-07-07 12:10:49Z cfischer $ Description: Auto-generated from advisory DSA 714-1 Authors: Thomas Reinke Copyright: Copyright c 2007 E-Soft Inc...

7.5CVSS0.2AI score0.05427EPSS
Exploits0
Rows per page
Query Builder