PT-2026-3855

CVE-2025-65586: Libheif Flaw Exposes Image Decoders to Denial-of-Service https://t.co/AHq7awqMnO...

CVE-2024-32035

ImageSharp is a 2D graphics API. A vulnerability discovered in the ImageSharp library, where the processing of specially crafted files can lead to excessive memory usage in image decoders. The vulnerability is triggered when ImageSharp attempts to process image files that are designed to exploit...

CVE-2024-32035 Memory Allocation with Excessive Size Value in SixLabors.ImageSharp

ImageSharp is a 2D graphics API. A vulnerability discovered in the ImageSharp library, where the processing of specially crafted files can lead to excessive memory usage in image decoders. The vulnerability is triggered when ImageSharp attempts to process image files that are designed to exploit...

CVE-2024-32035 Memory Allocation with Excessive Size Value in SixLabors.ImageSharp

ImageSharp is a 2D graphics API. A vulnerability discovered in the ImageSharp library, where the processing of specially crafted files can lead to excessive memory usage in image decoders. The vulnerability is triggered when ImageSharp attempts to process image files that are designed to exploit...

CVE-2024-32035

The CVE-2024-32035 entry concerns SixLabors.ImageSharp, a 2D graphics API. The vulnerability causes excessive memory usage in image decoders when processing specially crafted files, enabling a denial of service (DoS) by exhausting process memory. Affected is the ImageSharp decoding path as descri...

Mozilla Firefox Security Advisory (MFSA2015-143) - Linux

This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...

Fedora 30 : webkit2gtk3 (2019-4213e37211)

Improve performance of querying system fallback fonts. - Dont use prgname in dbus-proxy socket path. - Fix thread-safety issues in image decoders. - Fix the build with WebDriver disabled. - Disable accelerated compositing when we fail to initialize the EGL dispaly under Wayland. - Fill the...

Linux file chooser crashes on malformed images due to flaws in Jasper library — Mozilla

Security researcher Gustavo Grieco reported that on Linux Gnome systems the dialog for choosing local files uses the operating system's gdk-pixbuf library to render thumbnails for image file types. This library supports various image decoders, and Grieco reported that the Jasper and TGA decoders...

Mandriva Update for ImageMagick MDVSA-2008:035 (ImageMagick)

Check for the Version of ImageMagick OpenVAS Vulnerability Test Mandriva Update for ImageMagick MDVSA-2008:035 ImageMagick Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

Ubuntu Update for imagemagick vulnerabilities USN-523-1

Ubuntu Update for Linux kernel vulnerabilities USN-523-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN5231.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for imagemagick vulnerabilities USN-523-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

DEBIAN-CVE-2008-3134

Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service crash, infinite loop, or memory consumption via a unspecified vectors in the 1 AVI, 2 AVS, 3 DCM, 4 EPT, 5 FITS, 6 MTV, 7 PALM, 8 RLA, and 9 TGA decoder readers; and b the...

Ubuntu 5.04 / 5.10 / 6.06 LTS : imagemagick vulnerabilities (USN-340-1)

Tavis Ormandy discovered several buffer overflows in imagemagick's Sun Raster and XCF Gimp image decoders. By tricking a user or automated system into processing a specially crafted image, this could be exploited to execute arbitrary code with the users' privileges. Note that Tenable Network...

USN-523-1: ImageMagick vulnerabilities

Multiple vulnerabilities were found in the image decoders of ImageMagick. If a user or automated system were tricked into processing a malicious DCM, DIB, XBM, XCF, or XWD image, a remote attacker could execute arbitrary code with user privileges...

USN-340-1: imagemagick vulnerabilities

Tavis Ormandy discovered several buffer overflows in imagemagick's Sun Raster and XCF Gimp image decoders. By tricking a user or automated system into processing a specially crafted image, this could be exploited to execute arbitrary code with the users' privileges...

XV: Multiple vulnerabilities

Background XV is an interactive image manipulation program for the X Window System. Description Greg Roelofs has reported multiple input validation errors in XV image decoders. Tavis Ormandy of the Gentoo Linux Security Audit Team has reported insufficient validation in the PDS Planetary Data...

GLSA-200504-17 : XV: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200504-17 XV: Multiple vulnerabilities Greg Roelofs has reported multiple input validation errors in XV image decoders. Tavis Ormandy of the Gentoo Linux Security Audit Team has reported insufficient validation in the PDS Planetar...