ImageMagick code vulnerabilities

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 14.10.1 have code vulnerabilities that stem from issues with the MSL parser, particularly when handling...

OESA-2026-1004 gimp security update

The GIMP is an image composition and editing program, which can be used for creating logos and other graphics for Web pages. The GIMP offers many tools and filters, and provides a large image manipulation toolbox, including channel operations and layers, effects, subpixel imaging and antialiasing...

SUSE-SU-2026:0073-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-68618: read a malicious SVG file may result in a DoS attack bsc1255821. - CVE-2025-68950: check for circular references in mvg files may lead to stack overflow bsc1255822. - CVE-2025-69204: an integer overflow can lead to a DoS...

Adobe Photoshop Heap Buffer Overflow Vulnerability (CNVD-2025-29701)

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. Adobe Photoshop suffers from a heap buffer overflow vulnerability that can be exploited by an attacker to cause arbitrary code to be executed in the context of the current user...

OESA-2025-2075 openjpeg2 security update

OpenJPEG is an open-source JPEG 2000 codec written in C language. It has been developed in order to promote the use of JPEG 2000, a still-image compression standard from the Joint Photographic Experts Group JPEG. Since April 2015, it is officially recognized by ISO/IEC and ITU-T as a JPEG 2000...

Adobe Photoshop 输入验证错误漏洞

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. Adobe Photoshop suffers from an input validation error vulnerability that originates from an integer overflow, which can be exploited by an attacker ...

Adobe Photoshop Desktops Heap Buffer Overflow Vulnerability

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. A heap buffer overflow vulnerability exists in Adobe Photoshop Desktops. The vulnerability is due to a failure to perform strict checksums on memory...

Adobe Photoshop Digital Error Vulnerability

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. A security vulnerability exists in Adobe Photoshop, which can be exploited by an attacker to potentially cause arbitrary code to be executed in the...

ImageMagick Buffer Overflow Vulnerability (CNVD-2023-63193)

ImageMagick is a set of open-source image processing software from the American company ImageMagick. The software can read, convert or write images in a variety of formats. ImageMagick has a buffer overflow vulnerability, the vulnerability stems from the function PushCharPixel fails to correctly...

ImageMagick 命令注入漏洞

ImageMagick is a set of open-source image processing software from the American company ImageMagick. The software can read, convert or write images in a variety of formats. A security vulnerability exists in ImageMagick, which stems from a shell command injection vulnerability...

Adobe Photoshop Memory Misreference Vulnerability

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. A memory misreference vulnerability exists in Adobe Photoshop. The vulnerability stems from a mix-up in the program's instructions responsible for...

Adobe Photoshop out-of-bounds read vulnerability (CNVD-2023-13727)

Adobe Photoshop is a set of image processing software from Adobe. Adobe Photoshop has an out-of-bounds read vulnerability that can be exploited by attackers to cause sensitive memory leaks...

SUSE CVE-2016-7516

The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted VIFF file...

SUSE CVE-2017-15016

ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c...

SUSE CVE-2017-15281

ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted file, related to "Conditional jump or move depends on uninitialised values."...

Adobe Photoshop input validation error vulnerability

Adobe Photoshop is a set of image processing software from Adobe. Adobe Photoshop is vulnerable to an input validation error. An attacker could exploit the vulnerability to execute arbitrary code in the context of the current user...

Adobe Photoshop out-of-bounds write vulnerability (CNVD-2022-42168)

Adobe Photoshop is a set of image processing software from Adobe. Adobe Photoshop is vulnerable to an out-of-bounds write vulnerability. An attacker could exploit the vulnerability to execute code in the context of the current user...

Adobe Photoshop out-of-bounds write vulnerability (CNVD-2022-42170)

Adobe Photoshop is a set of image processing software from Adobe. Adobe Photoshop is vulnerable to an out-of-bounds write vulnerability that could be exploited to execute arbitrary code in the context of the current user...

Imagemagick Studio ImageMagick Buffer Overflow Vulnerability (CNVD-2022-20173)

Imagemagick Studio ImageMagick is a set of open source image processing software from ImageMagick Studio Imagemagick Studio, Inc. The software can read, convert, or write images in a variety of formats.ImageMagick suffers from a buffer overflow vulnerability that stems from a heap-based buffer...

Adobe Photoshop 2021 out-of-bounds read vulnerability

Adobe Photoshop, or "PS" for short, is an image processing software developed and distributed by Adobe. Adobe Photoshop 2021 22.5.1 and earlier versions contain an out-of-bounds read vulnerability. An attacker could exploit this vulnerability to elevate privileges...