4 matches found
Pillow 缓冲区错误漏洞
Pillow is an open-source image processing library developed by Pillow. Versions of Pillow from 10.3.0 to 12.1.1 contained a buffer error vulnerability. This vulnerability occurred when loading specially crafted PSD images, potentially leading to out-of-bounds write operations...
SUSE CVE-2018-19107
In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp called from psdimage.cpp in the PSD image reader may suffer from a denial of service heap-based buffer over-read caused by an integer overflow via a crafted PSD image file...
PYSEC-2018-141
In Exiv2 0.26, Exiv2::IptcParser::decode in iptc.cpp called from psdimage.cpp in the PSD image reader may suffer from a denial of service heap-based buffer over-read caused by an integer overflow via a crafted PSD image file...
Exiv2 integer overflow vulnerability (CNVD-2019-07086)
Exiv2 is a cross-platform C++ library and command line utility for managing image metadata. An integer overflow vulnerability in Exiv2::IptcParser::decode in iptc.cpp in Exiv2 0.26 can be exploited by an attacker to cause a denial of service via specially crafted PSD image files...