[SECURITY] Fedora 31 Update: python-pillow-6.1.0-4.fc31

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

Huawei Nova 5i pro and Nova 5 Array Subscript Checksum Improperly Vulnerability

The Huawei Nova 5i pro and Nova 5 are both smartphones from the Chinese company Huawei Huawei. The security vulnerability in Huawei Nova 5i pro prior to 9.1.1.190 C00E190R6P2 and Nova 5 prior to 9.1.1.175 C00E170R3P2 stems from the system not adequately checking the value of values used as...

Pillow has an unspecified vulnerability

Pillow is a Python-based image processing library. a security vulnerability exists in versions of Pillow prior to 6.2.0, which can be exploited by attackers to cause a denial of service...

OPENSUSE-SU-2019:2529-1 Security update for libjpeg-turbo

This update for libjpeg-turbo fixes the following issues: - CVE-2019-2201: Several integer overflow issues and subsequent segfaults occurred in libjpeg-turbo, when attempting to compress or decompress gigapixel images. bsc1156402 This update was imported from the SUSE:SLE-15:Update update project...

The vulnerability of the ReadOneJNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to induce a service failure.

The vulnerability of the ReadOneJNGImage function coders/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to errors in processing JPEG-formatted images. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

Mozilla Firefox ESR < 24.2 Multiple Vulnerabilities

Binary data 701241.prm...

DOS attack in Pillow when processing specially crafted image files

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

Debian: Security Advisory (DLA-1968-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-16865

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

CVE-2019-16865

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

CVE-2019-16865

Pillow CVE-2019-16865 affects Pillow

Debian DLA-1934-1 : cimg security update

Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string sanitization on URLs, which might result in a command injection when loading a special crafted image. The other CVEs are about heap-based buffer over-reads or double frees...

[SECURITY] [DLA 1934-1] cimg security update

Package : cimg Version : 1.5.9+dfsg-1+deb8u1 CVE ID : CVE-2018-7588 CVE-2018-7589 CVE-2018-7637 CVE-2018-7638 CVE-2018-7639 CVE-2018-7640 CVE-2018-7641 CVE-2019-1010174 Several issues have been found in cimg, a powerful image processing library. CVE-2019-1010174 is related to a missing string...

CVE-2019-16887

In IrfanView 4.53, Data from a Faulting Address controls a subsequent Write Address starting at image00400000+0x000000000001dcfc...

Pillow -- Allocation of resources without limits or throttling

Mitre reports: An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

CVE-2019-16710

ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c...

Multiple integer overflow vulnerabilities in LINE(Android)

Overview LINEAndroid provided by LINE Corporation contains multiple integer overflow vulnerabilities CWE-190 listed below. Integer overflow vulnerability in processing images using apng-drawable - CVE-2019-6007 Integer overflow vulnerability in processing images - CVE-2019-6010 LINE Corporation...

JVN#97845465: Multiple integer overflow vulnerabilities in LINE(Android)

LINEAndroid provided by LINE Corporation contains multiple integer overflow vulnerabilities CWE-190 listed below. Integer overflow vulnerability in processing images using apng-drawable - CVE-2019-6007 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L| Base...

ImageMagick Buffer Overflow Vulnerability (CNVD-2019-40999)

ImageMagick is a suite of open source image processing software. The software can read, convert or write images in a variety of formats. A buffer overflow vulnerability exists in WriteTIFFImage in the coders/tiff.c file in ImageMagick version 7.0.8-43 Q16. An attacker can exploit this vulnerabili...

Debian DLA-1888-1 : imagemagick security update

Multiple vulnerabilities have been found in imagemagick, an image processing toolkit. CVE-2019-12974 NULL pointer dereference in ReadPANGOImage and ReadVIDImage coders/pango.c and coders/vid.c. This vulnerability might be leveraged by remote attackers to cause denial of service via crafted image...