gimp: GIMP: Remote Code Execution via uninitialized memory in PGM file parsing

A flaw was found in GIMP. This uninitialized memory vulnerability allows a remote attacker to execute arbitrary code on affected installations. Successful exploitation requires user interaction, where the target must open a specially crafted PGM Portable Graymap image file. This can lead to...

CVE-2025-68950

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-12, Magick fails to check for circular references between two MVGs, leading to a stack overflow. This is a DoS vulnerability, and any situation that allows reading the mvg file wi...

AI Image Editing Tool Cutout Leaked User Images and Data

By Habiba Rashid In total, the Cutout-owned Elasticsearch server leaked a whopping 9 GB worth of customer data. This is a post from HackRead.com Read the original post: AI Image Editing Tool Cutout Leaked User Images and Data...

CVE-2022-45892

In Planet eStream before 6.72.10.07, multiple Stored Cross-Site Scripting XSS vulnerabilities exist: Disclaimer, Search Function, Comments, Batch editing tool, Content Creation, Related Media, Create new user, and Change Username...

The vulnerability of the randomize_iparp function in the edit_packet.c component of the editing and replaying utility Pcap Tcpreplay allows a hacker to cause a service failure.

The vulnerability of the randomizeiparp function in the editpacket.c component of the Pcap editing and replay utility Tcpreplay is related to writing beyond buffer boundaries. Exploiting this vulnerability allows a malicious actor to cause service interruptions using a specially created pcap file...

Adobe Prelude 缓冲区错误漏洞

Adobe Prelude is a set of video footage editing editing tools of the United States Odooby Adobe. The product is capable of editing, sequencing and annotating video footage. Adobe Prelude suffers from a buffer error vulnerability that can be exploited by an attacker to trigger arbitrary code...

Important: Red Hat Security Advisory: augeas security update

An update for augeas is now available for Red Hat Enterprise Linux 7.3 Advanced Update Support, Red Hat Enterprise Linux 7.3 Telco Extended Update Support, and Red Hat Enterprise Linux 7.3 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impac...

Memory Corruption Vulnerability in Quick Clip's Handling of TGA Format Images

Quick Clip is a video editing tool from 360. FastClip has a memory corruption vulnerability in the handling of TGA format images, which can be exploited by attackers to cause the program to crash by constructing a malformed TGA format file...

RedHat Update for augeas RHSA-2017:2788-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 7 : augeas (RHSA-2017:2788)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:2788 advisory. Augeas is a configuration editing tool. It parses configuration files in their native formats and transforms them into a tree. Configuration changes...

CentOS 7 : augeas (CESA-2017:2788)

An update for augeas is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

Important: Red Hat Security Advisory: augeas security update

An update for augeas is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

[SECURITY] [DSA 3949-1] augeas security update

------------------------------------------------------------------------- Debian Security Advisory DSA-3949-1 [email protected] https://www.debian.org/security/ Sebastien Delafond August 21, 2017 https://www.debian.org/security/faq -...

FontForge buffer overflow vulnerability (CNVD-2017-18538)

FontForge is an open source font editing tool that supports multiple languages. A buffer overflow vulnerability exists in ValidatePostScriptFontName in FontForge version 20161012. An attacker can exploit this vulnerability with a specially crafted otf file to cause a denial of service or execute...

The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick allows a hacker to trigger a memory exhaustion condition.

The vulnerability of the ReadXWDImage function in the console-based image editing tool ImageMagick is related to resource management errors. Exploiting this vulnerability can allow an attacker, operating remotely, to cause memory exhaustion by manipulating the length the number of color table...

Photo Gallery Installation and Upgrades

Contains installation and upgrade files for Windows Live Photo Gallery, a tool for editing photos and organizing and sharing photos and videos...