2241 matches found
ALSA-2024:3005 Moderate: python-pillow security update
The python-pillow packages contain a Python image processing library that provides extensive file format support, an efficient internal representation, and powerful image-processing capabilities. Security Fixes: python-pillow: uncontrolled resource consumption when textlength in an ImageDraw...
SUSE CVE-2023-52682
In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to wait on block writeback for postread case If inode is compressed, but not encrypted, it missed to call f2fswaitonblockwriteback to wait for GCed page writeback in IPU write path. Thread A GC-Thread - f2fsgc -...
RHEL 6 : python-pillow (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - python-pillow: Missing check for negative image dimensions in ImagingNew Storage.c CVE-2016-9190 - Buffer...
GLSA-202405-02 : ImageMagick: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202405-02 ImageMagick: Multiple Vulnerabilities - A flaw was found in ImageMagick. The vulnerability occurs due to improper use of open functions and leads to a denial of service. This flaw allows an attacker to crash the system...
SixLabors.ImageSharp vulnerable to Memory Allocation with Excessive Size Value
Impact A vulnerability discovered in the ImageSharp library, where the processing of specially crafted files can lead to excessive memory usage in image decoders. The vulnerability is triggered when ImageSharp attempts to process image files that are designed to exploit this flaw. This flaw can b...
[SECURITY] Fedora 39 Update: python-pillow-10.3.0-1.fc39
Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt, devel developmen...
Fedora: Security Advisory (FEDORA-2024-a966a6485e)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
[SECURITY] Fedora 40 Update: imagej-1.54i-1.fc40
ImageJ is a public domain Java image processing program. It can display, edit, analyze a wide variety of image data, including image sequences. Imagej can be used for quantitative analysis of engineering and scientific image data...
About the security content of iOS 17.4.1 and iPadOS 17.4.1
About the security content of iOS 17.4.1 and iPadOS 17.4.1 This document describes the security content of iOS 17.4.1 and iPadOS 17.4.1. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
About the security content of iOS 16.7.7 and iPadOS 16.7.7
About the security content of iOS 16.7.7 and iPadOS 16.7.7 This document describes the security content of iOS 16.7.7 and iPadOS 16.7.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
About the security content of iOS 16.7.7 and iPadOS 16.7.7
About the security content of iOS 16.7.7 and iPadOS 16.7.7 This document describes the security content of iOS 16.7.7 and iPadOS 16.7.7. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and...
CVE-2024-28584
Null Pointer Dereference vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the J2KImageToFIBITMAP function when reading images in J2K format...
CVE-2024-28579
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the FreeImageUnload function when reading images in HDR format...
CVE-2024-28574
Buffer Overflow vulnerability in open source FreeImage v.3.19.0 r1909 allows a local attacker to cause a denial of service DoS via the opjj2kcopydefaulttcpandcreatetcd function when reading images in J2K format...
PT-2024-22471 · Freeimage +1 · Freeimage +1
Name of the Vulnerable Software and Affected Versions: FreeImage version 3.19.0 Description: The issue allows a local attacker to execute arbitrary code via the Imf 2 2::Xdr::read function when reading images in EXR format. This is a Buffer Overflow vulnerability in the open source FreeImage...
PT-2024-22474 · Freeimage +1 · Freeimage +1
Name of the Vulnerable Software and Affected Versions: FreeImage version 3.19.0 r1909 Description: The issue allows a local attacker to cause a denial of service DoS via the fill input buffer function when reading images in JPEG format. Recommendations: For FreeImage version 3.19.0 r1909, conside...
CVE-2024-23286
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, visionOS 1.1, iOS 17.4 and iPadOS 17.4, watchOS 10.4, iOS 16.7.6 and iPadOS 16.7.6, tvOS 17.4. Processing an image may lead to arbitrary code...
CVE-2024-23286
A buffer overflow issue was addressed with improved memory handling. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1, watchOS 10.4. Processing an image may lead to arbitrary code...
CVE-2024-23258
An out-of-bounds read was addressed with improved input validation. This issue is fixed in visionOS 1.1, macOS Sonoma 14.4. Processing an image may lead to arbitrary code execution...
CVE-2024-23257
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.7.4, macOS Ventura 13.6.5, macOS Sonoma 14.4, visionOS 1.1, iOS 16.7.6 and iPadOS 16.7.6. Processing an image may result in disclosure of process memory...