CVE-2022-24720 Improper Input Validation in image_processing

imageprocessing is an image processing wrapper for libvips and ImageMagick/GraphicsMagick. Prior to version 1.12.2, using the apply method from imageprocessing to apply a series of operations that are coming from unsanitized user input allows the attacker to execute shell commands. This method is...

Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35420)

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...

Accusoft ImageGear Heap Buffer Overflow Vulnerability (CNVD-2022-35421)

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...

Imagemagick Studio ImageMagick Buffer Overflow Vulnerability (CNVD-2022-20173)

Imagemagick Studio ImageMagick is a set of open source image processing software from ImageMagick Studio Imagemagick Studio, Inc. The software can read, convert, or write images in a variety of formats.ImageMagick suffers from a buffer overflow vulnerability that stems from a heap-based buffer...

CVE-2022-0545

An integer overflow in the processing of loaded 2D images leads to a write-what-where vulnerability and an out-of-bounds read vulnerability, allowing an attacker to leak sensitive information or achieve code execution in the context of the Blender process when a specially crafted image file is...

CVE-2022-0545

Blender is affected by CVE-2022-0545 due to an integer overflow in the processing of loaded 2D images, causing a write-what-where condition and an out-of-bounds read that can leak data or enable code execution within the Blender process. Affected releases include Blender versions prior to 2.83.19...

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availab...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. Accusoft ImageGear suffers from a heap buffer overflow vulnerability, which can be exploited by attackers to build files that could result in a heap buffer overflow...

Accusoft ImageGear 缓冲区错误漏洞

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, USA. A security vulnerability exists in Accusoft ImageGear, which can be exploited by an attacker to send a specially crafted file and execute arbitrary code on the target system...

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

Important: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions...

RLSA-2022:0643 Important: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions...

python-pillow security update

An update is available for python-pillow. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The python-pillow packages contain a Python image processing library th...

ALSA-2022:0643 Important: python-pillow security update

The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: PIL.ImageMath.eval allows evaluation of arbitrary expressions...

Important: Red Hat Security Advisory: python-pillow security update

An update for python-pillow is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

USN-5143-1: Leptonica vulnerability

It was discovered that Leptonica incorrectly handled certain image files. An attacker could possibly use this issue to execute arbitrary code or other unspecified impact...

[SECURITY] Fedora 35 Update: python-pillow-8.3.2-2.fc35

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...

[SECURITY] Fedora 34 Update: python-pillow-8.1.2-6.fc34

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...