Buffer over-flow in Pillow

When reading a TGA file with RLE packets that cross scan lines, Pillow reads the information past the end of the first line without deducting that from the length of the remaining file data. This vulnerability was introduced in Pillow 9.1.0, and can cause a heap buffer overflow. Opening an image...

PT-2019-5204 · Graphicsmagick +4 · Graphicsmagick +4

Name of the Vulnerable Software and Affected Versions: GraphicsMagick versions 1.4 snapshot-20190322 Q8 Description: The issue is related to a heap-based buffer over-read in the ReadMIFFImage function, which can be exploited by remote attackers to cause a denial of service or disclose information...