2241 matches found
Pillow input validation error vulnerability
Pillow is a Python-based image processing library. Pillow is vulnerable to an input validation error prior to 9.0.0, which stems from a networked system or product that does not properly validate input data. An attacker could exploit this vulnerability to execute arbitrary expressions using the...
[SECURITY] Fedora 34 Update: gegl04-0.4.34-1.fc34
GEGL Generic Graphics Library is a graph based image processing framework. GEGLs original design was made to scratch GIMP's itches for a new compositing and processing core. This core is being designed to have minimal dependencies and a simple well defined API...
CVE-2021-44648
GNOME gdk-pixbuf 2.42.6 is vulnerable to a heap-buffer overflow vulnerability when decoding the lzw compressed stream of image data in GIF files with lzw minimum code size equals to 12...
DEBIAN-CVE-2022-22815
pathgetbbox in path.c in Pillow before 9.0.0 improperly initializes ImagePath.Path...
[SECURITY] Fedora 35 Update: gegl04-0.4.34-1.fc35
GEGL Generic Graphics Library is a graph based image processing framework. GEGLs original design was made to scratch GIMP's itches for a new compositing and processing core. This core is being designed to have minimal dependencies and a simple well defined API...
Fedora: Security Advisory for gegl04 (FEDORA-2022-a1c5b18362)
The remote host is missing an update for the Copyright C 2022 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
CVE-2022-22817
PIL.ImageMath.eval in Pillow before 9.0.0 allows evaluation of arbitrary expressions, such as ones that use the Python exec method. A lambda expression could also be used...
About the security content of tvOS 15.2
About the security content of tvOS 15.2 This document describes the security content of tvOS 15.2. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...
@htmlacademy/autocheck (>=1.5.0 <=1.5.4), @htmlacademy/courses-task-checks (>=1.0.10-14 <=1.1.38) +16 more potentially affected by CVE-2020-28248 via png-img (>=0.2.1 <=2.3.0)
png-img NPM version =0.2.1, =1.5.0, =1.0.10-14, =1.0.1, =1.0.0, =1.10.1, =4.0.0, =0.0.1, =0.9.0, =2.2.0, =0.7.0, =1.0.11, =0.79.5, =0.1.0, =0.0.1, =0.0.18 and more Source cves: CVE-2020-28248 Source advisory: OSV:GHSA-Q5WR-FVPQ-P67G...
Vulnerabilities fixed in Autodesk products
Vulnerabilities have been fixed in several Autodesk products. The vulnerabilities potentially allow a malicious person to execute code under the application's permissions. To exploit requires a malicious party to trick a user into opening a rogue file open. The vulnerabilities are in two modules...
[SECURITY] Fedora 34 Update: vips-8.11.3-1.fc34.1
VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...
[SECURITY] Fedora 34 Update: R-magick-2.7.3-2.fc34
Bindings to 'ImageMagick': the most comprehensive open-source image processing library available. Supports many common formats png, jpeg, tiff, pdf, etc and manipulations rotate, scale, crop, trim, flip, blur, etc. All operations are vectorized via the Magick++ STL meaning they operate either on ...
Fedora: Security Advisory for vips (FEDORA-2021-b58af96f33)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Aom 缓冲区错误漏洞
Aom is a next-generation open-source digital media technology for everyone, organized by the Alliance For Open Media AOM. A security vulnerability exists in AOM version 2.0.1, which stems from a stack buffer overflow in the component src/aomimage.c. The vulnerability is caused by the presence of ...
Fedora: Security Advisory for R-magick (FEDORA-2021-df1fa3d3e0)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 35 Update: vips-8.11.3-6.fc35
VIPS is an image processing library. It is good for very large images even larger than the amount of RAM in your machine, and for working with color. This package should be installed if you want to use a program compiled against VIPS...
[SECURITY] Fedora 35 Update: R-magick-2.7.3-2.fc35
Bindings to 'ImageMagick': the most comprehensive open-source image processing library available. Supports many common formats png, jpeg, tiff, pdf, etc and manipulations rotate, scale, crop, trim, flip, blur, etc. All operations are vectorized via the Magick++ STL meaning they operate either on ...
Mozilla Firefox Security Advisory (MFSA2014-08) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Mozilla Firefox Security Advisory (MFSA2013-116) - Linux
This host is missing a security update for Mozilla Firefox. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; y...
Overflow/crash in `tf.image.resize` when size is large
Impact If tf.image.resize is called with a large input argument then the TensorFlow process will crash due to a CHECK-failure caused by an overflow. python import tensorflow as tf import numpy as np tf.keras.layers.UpSampling2D size=1610637938, dataformat='channelsfirst',...