CVE-2021-30796

A logic issue was addressed with improved validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5, Security Update 2021-004 Catalina, Security Update 2021-005 Mojave. Processing a maliciously crafted image may lead to a denial of service...

CVE-2021-30792

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.7, macOS Big Sur 11.5. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2021-30743

An out-of-bounds write was addressed with improved input validation. This issue is fixed in iOS 14.5 and iPadOS 14.5, watchOS 7.4, Security Update 2021-003 Catalina, tvOS 14.5, macOS Big Sur 11.3. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2021-30752

The CVE-2021-30752 issue affects Apple platforms including macOS Big Sur 11.3, iOS 14.5 / iPadOS 14.5, watchOS 7.4, and tvOS 14.5. Description indicates that Processing a maliciously crafted image could lead to arbitrary code execution, caused by an out-of-bounds read that was addressed with impr...

ROS-2-2117

2.2117 Multiple vulnerabilities in libwebp 1. Vulnerability Description: CVE-2020-36332 A vulnerability in the libwebp library for encoding and decoding WebP images, is related to improper control of internal resource consumption. Exploitation of the vulnerability could allow an attacker acting...

ROS-2-809

2.809 Multiple Vulnerabilities in LibTIFF 1. Vulnerability description: CVE-2020-35524 CVE-2020-35523 CVE-2020-35522 CVE-2020-35522 CVE-2020-35521 The vulnerability allows a remote attacker to execute arbitrary code on the target system. The vulnerability exists due to a boundary error in TIFF...

CVE-2021-33286

In NTFS-3G versions 2021.8.22, when a specially crafted unicode string is supplied in an NTFS image a heap buffer overflow can occur and allow for code execution...

The vulnerability in the Google Chrome web browser for iOS operating systems relates to deficiencies in access control when processing images. This allows a malicious actor to circumvent security restrictions and gain unauthorized access to protected information.

The vulnerability of the Google Chrome web browser on iOS operating systems is related to deficiencies in access control when processing images. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain unauthorized access to protected information by opening ...

CVE-2021-30939

An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Processing a maliciously crafted image may lead to arbitrary code execution...

CVE-2021-30926

Description: A memory corruption issue in the processing of ICC profiles was addressed with improved input validation. This issue is fixed in macOS Monterey 12.1, watchOS 8.3, iOS 15.2 and iPadOS 15.2, tvOS 15.2. Processing a maliciously crafted image may lead to arbitrary code execution...

PT-2021-6083 · Apple · Macos Catalina +6

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 11.6.2 tvOS versions prior to 15.2 macOS Monterey versions prior to 12.1 macOS Catalina versions prior to Security Update 2021-008 iOS versions prior to 15.2 iPadOS versions prior to 15.2 watchOS versions prior to 8.3...

Adobe Photoshop heap buffer overflow vulnerability (CNVD-2021-63278)

Adobe Photoshop, or "PS" for short, is an image processing software developed and distributed by Adobe. Adobe Photoshop is vulnerable to a heap buffer overflow. An attacker can exploit this vulnerability to execute arbitrary code...

Adobe Photoshop out-of-bounds write vulnerability (CNVD-2021-63277)

Adobe Photoshop, or "PS" for short, is an image processing software developed and distributed by Adobe. Adobe Photoshop is vulnerable to an out-of-bounds write vulnerability. An attacker can exploit this vulnerability to execute arbitrary code...

CVE-2021-38623

The deferredimageprocessing aka Deferred image processing extension before 1.0.2 for TYPO3 allows Denial of Service via the FAL API because of /var/transient disk consumption...

CVE-2021-38623

The deferredimageprocessing aka Deferred image processing extension before 1.0.2 for TYPO3 allows Denial of Service via the FAL API because of /var/transient disk consumption...

CVE-2021-38623

The deferredimageprocessing aka Deferred image processing extension before 1.0.2 for TYPO3 allows Denial of Service via the FAL API because of /var/transient disk consumption...

Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-2279)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 33 Update: python-pillow-7.2.0-7.fc33

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...

[SECURITY] Fedora 33 Update: python2-pillow-6.2.2-6.fc33

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. This is a minimal compatibility package for https://pagure.io/fesco/issue/2266...

[SECURITY] Fedora 34 Update: python-pillow-8.1.2-4.fc34

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...