2235 matches found
USN-5736-2 imagemagick vulnerabilities
USN-5736-1 fixed vulnerabilities in ImageMagick. This update provides the corresponding updates for Ubuntu 20.04 ESM and Ubuntu 22.04 ESM. One of the issues, CVE-2021-20224, only affected Ubuntu 20.04 ESM, while CVE-2021-20245, CVE-2021-3574, CVE-2021-4219 and CVE-2022-1114 only affected Ubuntu...
[SECURITY] [DLA 3200-1] graphicsmagick security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3200-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz November 21, 2022 https://wiki.debian.org/LTS -...
Vulnerability of the new_node() function (libraw\src\x3f\x3futils_patched.cpp) in the LibRaw image processing library, which allows a hacker to trigger a service failure
The vulnerability of the newnode function libraw\src\x3f\x3futilspatched.cpp in the LibRaw image processing library is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...
CVE-2022-42795
A memory consumption issue was addressed with improved memory handling. This issue is fixed in tvOS 16, iOS 16, macOS Ventura 13, watchOS 9. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2022-26730
A memory corruption issue existed in the processing of ICC profiles. This issue was addressed with improved input validation. This issue is fixed in macOS Ventura 13. Processing a maliciously crafted image may lead to arbitrary code execution...
CVE-2022-42795
A memory consumption issue was addressed with improved memory handling. This issue is fixed in tvOS 16, iOS 16, macOS Ventura 13, watchOS 9. Processing a maliciously crafted image may lead to arbitrary code execution...
About the security content of iOS 15.7.1 and iPadOS 15.7.1
About the security content of iOS 15.7.1 and iPadOS 15.7.1 This document describes the security content of iOS 15.7.1 and iPadOS 15.7.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
Accusoft ImageGear 缓冲区错误漏洞
Accusoft ImageGear is a software development kit SDK for image processing from Accusoft Corporation. A buffer error vulnerability exists in Accusoft ImageGear version 20.0 that stems from the presence of an out-of-bounds write. An attacker could exploit the vulnerability to cause memory corruptio...
OPENSUSE-SU-2022:10154-1 Security update for pngcheck
This update for pngcheck fixes the following issues: pngcheck was updated to 3.0.3: Version 3.0.1: fixed a crash bug and probable vulnerability in large MNG LOOP chunks Version 3.0.2: fixed a divide-by-zero crash bug and probable vulnerability in interlaced images with extra compressed data beyon...
JasPer 安全漏洞
JasPer is a C-based tool for image processing from the individual developer Michael Adams. The software supports the JPEG-2000 format as defined in ISO/IEC 15444-1 and is primarily used for image encoding and processing. A security vulnerability exists in JasPer, which stems from the discovery of...
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component...
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
CVE-2021-40165
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
CVE-2021-40165
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
CVE-2021-40163
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component...
CVE-2021-40166
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code...
Memory corruption
A Memory Corruption vulnerability may lead to code execution through maliciously crafted DLL files through Autodesk Image Processing component...
Code injection
A maliciously crafted TIFF, PICT, TGA, or RLC file in Autodesk Image Processing component may be used to write beyond the allocated buffer while parsing TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
Spoofing
A maliciously crafted PNG file in Autodesk Image Processing component may be used to attempt to free an object that has already been freed while parsing them. This vulnerability may be exploited by attackers to execute arbitrary code...