Pillow 输入验证错误漏洞

Pillow is an open-source image processing library developed by Pillow. In versions 10.3.0 to 12.2.0, Pillow had a vulnerability related to input validation errors. This vulnerability could lead to memory corruption when processing malicious PSD files, potentially causing crashes or arbitrary code...

CLSA-2026-1776848113 gimp: Fix of 2 CVEs

CVE-2026-2239: fix heap-buffer-overflow in freadpascalstring when processing PSD files and a follow-up NULL pointer dereference in loadresource1006 alpha names handling - CVE-2026-2272: fix integer overflow in ICO file loading...

Mattermost fails to bound memory allocation when processing PSD image files

Mattermost versions 11.3.x = 11.3.0, 11.2.x = 11.2.2, 10.11.x = 10.11.10 fail to bound memory allocation when processing PSD image files which allows an authenticated attacker to cause server memory exhaustion and denial of service via uploading a specially crafted PSD file. Mattermost Advisory I...

Foxit Studio Photo Buffer Overflow Vulnerability (CNVD-2020-18155)

Foxit Studio Photo is a set of image editing software from the Chinese company Foxit Foxit. A buffer overflow vulnerability exists in the processing of PSD files in Foxit Studio Photo 3.6.6.918 and earlier versions for Windows platforms, which originates when a networked system or product perform...

DEBIAN-CVE-2018-19107

In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp called from psdimage.cpp in the PSD image reader may suffer from a denial of service heap-based buffer over-read caused by an integer overflow via a crafted PSD image file...

GIMP: Multiple integer overflows

Background GIMP is the GNU Image Manipulation Program. Description Sean Larsson from iDefense Labs discovered multiple integer overflows in various GIMP plugins CVE-2006-4519. Stefan Cornelius from Secunia Research discovered an integer overflow in the seektoandunpackpixeldata function when...