CVE-2026-46559

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

CVE-2026-46559

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-48 and 7.1.2-23, an incorrect check in the JP2 will result in an heap buffer over-write of a single byte when specifying certain options. This issue has been patched in versions...

Infinite loop

Overview Affected versions of this package are vulnerable to Infinite loop in the extractPartialStreams and corresponding extraction functions for HEIF, JP2, and JXL. An attacker supplying an image whose requested box declares a size of zero can hang the parser indefinitely. Note: This is a bypas...

Important: gimp security update

The GIMP GNU Image Manipulation Program is an image composition and editing program. GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. Security Fixes: gimp: GIMP:Memo...

USN-8057-1: GIMP vulnerabilities

Hanno Böck discovered that GIMP allocated FLI images using only the information present in the file header, which allowed for a maliciously- crafted file to cause out-of-bounds writes. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue onl...

openSUSE 16 Security Update : gimp (openSUSE-SU-2026:20100-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20100-1 advisory. Changes in gimp: - CVE-2025-14422: Fixed PNM File Parsing Integer Overflow bsc1255293 - CVE-2025-14423: Fixed LBM File Parsing Stack-based Buffe...

EUVD-2018-13137

Malware in sbrugna...

SUSE CVE-2018-20584

JasPer 2.0.14 allows remote attackers to cause a denial of service application hang via an attempted conversion to the jp2 format...

Bentley Systems Bentley View 缓冲区错误漏洞

Bentley View is a free viewer from Bentley Systems, Inc. An out-of-bounds write vulnerability exists in Bentley View JP2 files, which stems from the fact that data created in a JP2 file can trigger a write operation beyond the end of the allocated buffer. An attacker could exploit this...

CVE-2018-20584

JasPer 2.0.14 allows remote attackers to cause a denial of service application hang via an attempted conversion to the jp2 format...

CVE-2018-20584

JasPer 2.0.14 allows remote attackers to cause a denial of service application hang via an attempted conversion to the jp2 format...

Format string

JasPer 2.0.14 allows remote attackers to cause a denial of service application hang via an attempted conversion to the jp2 format...

CVE-2018-20584

JasPer 2.0.14 allows remote attackers to cause a denial of service application hang via an attempted conversion to the jp2 format...

DEBIAN-CVE-2017-13145

In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function in coders/jp2.c does not properly validate the channel geometry, leading to a crash...

[SECURITY] Fedora 24 Update: jasper-1.900.13-2.fc24

This package contains an implementation of the image compression standard JPEG-2000, Part 1. It consists of tools for conversion to and from the JP2 and JPC formats...