Debian DLA-2612-1 : leptonlib security update

Several issues have been found by ClusterFuzz in leptonlib, an image processing library. All issues are related to heap-based buffer over-read in several functions or a denial of service application crash with crafted data. For Debian 9 stretch, these problems have been fixed in version...

Debian: Security Advisory (DLA-2612-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Accusoft ImageGear Out-of-Bounds Writing Vulnerability

Accusoft ImageGear is a software development kit SDK for image processing from Accusoft, U.S. An out-of-bounds write vulnerability exists in Accusoft ImageGear, which could be exploited by an attacker to potentially cause memory corruption via a malformed file prepared...

JasPer 代码问题漏洞

JasPer is a C-based tool for image processing from the individual developer Michael Adams. The software supports the JPEG-2000 format as defined in ISO/IEC 15444-1 and is primarily used for image encoding and processing. Jasper suffers from a code issue vulnerability that can be exploited by an...

Pillow Buffer Overflow Vulnerability (CNVD-2021-54033)

Pillow is a Python-based image processing library. buffer overflow vulnerability exists in versions of Pillow prior to 8.1.1, which stems from the presence of a negative offset memcpy with an invalid size in TiffDecode.c. No details of the vulnerability are currently available...

Fedora: Security Advisory for python-pillow (FEDORA-2021-9016a9b7bd)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

[SECURITY] Fedora 34 Update: python-pillow-8.1.2-1.fc34

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

PT-2021-4567 · Pillow +9 · Pillow +9

Name of the Vulnerable Software and Affected Versions: Pillow versions prior to 8.2.0 Description: An issue was discovered in the FliDecode component of the Pillow image processing library, related to incorrect checking of non-zero block advance for FLI data. This could potentially lead to an...

[SECURITY] Fedora 33 Update: python-pillow-7.2.0-5.fc33

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

[SECURITY] Fedora 32 Update: python-pillow-7.0.0-7.fc32

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

[SECURITY] Fedora 32 Update: python2-pillow-6.2.2-5.fc32

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. This is a minimal compatibility package for https://pagure.io/fesco/issue/2 266...

Pillow has an unspecified vulnerability (CNVD-2021-54034)

Pillow is a Python-based image processing library. Pillow version 8.1.1 previously contained a security vulnerability that could be exploited by attackers to conduct regular expression DoS ReDoS attacks via crafted PDF files...

Fedora: Security Advisory for python2-pillow (FEDORA-2021-0ece308612)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Leptonica heap buffer overflow vulnerability (CNVD-2021-19746)

Leptonica is an open source library containing software widely used in image processing and image analysis applications. A heap buffer overflow vulnerability exists in pixReadFromTiffStream in tiffio.c in versions of Leptonica prior to 1.80.0. No detailed vulnerability details are provided at thi...

Leptonica heap buffer overflow vulnerability (CNVD-2021-19745)

Leptonica is an open source library containing software widely used in image processing and image analysis applications. A heap buffer overflow vulnerability exists in findNextBorderPixel in ccbord.c in versions of Leptonica prior to 1.80.0. No details of the vulnerability are provided at this ti...

Fedora: Security Advisory for python-pillow (FEDORA-2021-15845d3abe)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Leptonica Heap Buffer Overflow Vulnerability

Leptonica is an open source library containing software widely used in image processing and image analysis applications. A heap buffer overflow vulnerability exists in pixFewColorsOctcubeQuantMixed in colorquant1.c in versions of Leptonica prior to 1.80.0. No detailed vulnerability details are...

Dan Bloomberg Leptonica 安全漏洞

Dan Bloomberg Leptonica is a Dan Bloomberg open source application. It provides basic image processing and image analysis operations. A security vulnerability exists in Leptonica before 1.80.0 that allows denial of service application crash...

Dan Bloomberg Leptonica 缓冲区错误漏洞

Leptonica is an open source library containing software widely used in image processing and image analysis applications. A heap buffer overflow vulnerability exists in findNextBorderPixel in ccbord.c in versions of Leptonica prior to 1.80.0. No details of the vulnerability are provided at this ti...

Adobe Photoshop has a binary vulnerability

Adobe Photoshop is an image-processing software developed and distributed by Adobe, and using its many editing and drawing tools, you can effectively perform tasks such as photo editing. Adobe Photoshop suffers from a binary vulnerability that can be exploited by attackers to cause a denial of...