2253 matches found
ImageMagick Denial of Service Vulnerability (CNVD-2017-30501)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the ReadOneJNGImage of coders/png.c file in ImageMagick version 7.0.7-2. A...
Memory Corruption Vulnerability in PSD Image Processing by PictureQuest Software
Look at the picture is a picture browsing tool. A memory corruption vulnerability exists in the handling of PSD format images. An attacker can cause the program to crash or cause arbitrary code execution by constructing a malformed PSD format...
CVE-2017-14994
ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted DICOM image, related to the ability of DCMReadNonNativeImages to yield an image list with zero frames...
CVE-2017-14265
A stack buffer overflow flaw was found in the way dcraw handled processing of RAW image files. This flaw could potentially be used to crash the dcraw process by supplying it a specially crafted image file...
CVE-2017-14607
In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memory or cause an application crash...
[SECURITY] Fedora 25 Update: vips-8.4.4-1.fc25.1
VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...
[SECURITY] Fedora 26 Update: vips-8.5.8-2.fc26
VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...
Artifex MuPDf JBIG2 Parser Code Execution Vulnerability(CVE-2016-8729)
Summary An exploitable memory corruption vulnerability exists in the JBIG2 parser of Artifex MuPDF 1.9. A specially crafted PDF can cause a negative number to be passed to a memset resulting in memory corruption and potential code execution. An attacker can specially craft a PDF and send to the...
ImageMagick ReadMATImage Function Denial of Service Vulnerability
ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A denial of service vulnerability exists in the ReadMATImage function in coders/mat.c in ImageMagick, which can be exploited by an attacker to cause a denial of servic...
ImageMagick memory leak vulnerability (CNVD-2017-25389)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory leak vulnerability exists in the WriteMSLImage of the coders/msl.c file in ImageMagick version 7.0.6-2. An...
Gdk-Pixbuf JPEG gdk_pixbuf__jpeg_image_load_increment Code Execution Vulnerability
Summary An exploitable heap overflow vulnerability exists in the gdkpixbufjpegimageloadincrement functionality of Gdk-Pixbuf 2.36.6. A specially crafted jpeg file can cause a heap overflow resulting in remote code execution. An attacker can send a file or url to trigger this vulnerability. Tested...
CVE-2017-12920
CVE-2017-12920 affects libfpx version 1.3.1_p6; the vulnerability is a denial of service caused by a NULL pointer dereference in CDirectory::GetDirEntry in dir.cxx when parsing a crafted FlashPIX (fpx) image. The connected sources describe a remote trigger via a crafted image; no exploitation sta...
The vulnerability lies in the image processing mechanism when dealing with EMF files related to text output, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. This allows a perpetrator to execute arbitrary code.
The vulnerability lies in the image processing mechanism when dealing with EMF files related to text output, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. It arises due to the execution of an operation...
The vulnerability lies in the image processing mechanism when dealing with EMF files related to raster displays, PDF editor programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF viewer programs like Adobe Reader Document Cloud. This vulnerability allows an attacker to execute arbitrary code.
The vulnerability in the image processing mechanism during the processing of EMF files related to raster display transformations, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader, Adobe Reader Document Cloud, arises due to...
The vulnerability lies in the image processing mechanism when dealing with EMF files related to path visualization, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader Document Cloud. This allows a perpetrator to execute arbitrary code.
The vulnerability in the image processing mechanism during the processing of EMF files related to path visualization, PDF file editing programs like Adobe Acrobat Document Cloud, Adobe Acrobat, and PDF file viewing programs like Adobe Reader, Adobe Reader Document Cloud, arises due to the executi...
ImageMagick memory leak vulnerability (CNVD-2017-25053)
ImageMagick is the United States ImageMagick Studio company's set of open source image processing software. A memory leak vulnerability exists in the 'ReadMATImage' function of the ImageMagick coders/mat.c file, which allows remote attackers to exploit the vulnerability to construct malicious fil...
GraphicsMagick buffer overflow vulnerability (CNVD-2017-237216)
GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A buffer overflow vulnerability exists in the 'GetStyleTokens' function in coders/svg.c:314:12 in GraphicsMagick version 1.3.26. An attacker can exploit this...
CVE-2017-12864
In opencv/modules/imgcodecs/src/grfmtpxm.cpp, function ReadNumber did not checkout the input length, which lead to integer overflow. If the image is from remote, may lead to remote code execution or denial of service. This affects Opencv 3.3 and earlier...
The vulnerability of the DriverFileUploadServlet server servlet in the web application, which is designed for managing and monitoring printing devices and image processing, allows a perpetrator to delete any file.
The vulnerability of the DriverFileUploadServlet web application, which is designed for managing and monitoring printing devices and image processing, exists due to an incorrect path limitation for the restricted directory. Exploiting this vulnerability could allow a malicious actor to delete any...
The vulnerability of the FileUploadController servlet in the web application, which is designed for managing and monitoring printing devices and image processing. SyncThru 6 allows a perpetrator to execute arbitrary code with system privileges.
The vulnerability of the FileUploadController servlet in the web application, which is designed for managing and monitoring printing devices and image processing, exists due to an incorrect path limitation for the restricted directory. Exploiting this vulnerability allows a malicious actor to...