CVE-2019-11050

When PHP EXIF extension is parsing EXIF information from an image, e.g. via exifreaddata function, in PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 it is possible to supply it with data what will cause it to read past the allocated buffer. This may lead to information disclosure o...

USN-4222-1: GraphicsMagick vulnerabilities

It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service or other unspecified impact...

CVE-2014-8561

imagemagick 6.8.9.6 has remote DOS via infinite loop...

LEAD Technologies LEADTOOLS Information Disclosure Vulnerability

LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. An information disclosure vulnerability exists in the DICOM packet parsing function of the libltdic.so library in LEAD Technologies LEADTOOLS version 20.0.2019.3.15, which can be exploited by an attacker to...

LEAD Technologies LEADTOOLS Code Execution Vulnerability (CNVD-2020-09643)

LEAD Technologies LEADTOOLS is an image processing development kit from LEAD Technologies. A code execution vulnerability exists in the DICOM packet parsing functionality in LEAD Technologies LEADTOOLS version 20.0.2019.3.15, which can be exploited by an attacker to cause an integer overflow by...

Adobe Photoshop CC Memory Corruption Vulnerability (CNVD-2019-45962)

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. A security vulnerability exists in Adobe Photoshop CC for Windows and macOS based platforms. The vulnerability can be exploited by an attacker to...

Fedora Update for python-pillow FEDORA-2019-19a161d540

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

MGASA-2019-0355 Updated evince packages fix security vulnerability

The updated packages fix a security vulnerability: The tiffdocumentrender and tiffdocumentgetthumbnail functions in the TIFF document backend in GNOME Evince through 3.32.0 did not handle errors from TIFFReadRGBAImageOriented, leading to uninitialized memory use when processing certain TIFF image...

[SECURITY] Fedora 30 Update: python-pillow-5.4.1-3.fc30

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

USN-4206-1: GraphicsMagick vulnerabilities

It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of service. CVE-2017-10794, CVE-2017-10799, CVE-2017-11102, CVE-2017-11140, CVE-2017-11403, CVE-2017-11636, CVE-2017-11637, CVE-2017-13147, CVE-2017-14042,...

[SECURITY] Fedora 31 Update: opencv-3.4.8-1.fc31

OpenCV means Intel=EF=BF=BD=EF=BF=BD Open Source Computer Vision Library. I t is a collection of C functions and a few C++ classes that implement some popular Image Process ing and Computer Vision algorithms...

[SECURITY] Fedora 31 Update: python-pillow-6.1.0-4.fc31

Python image processing library, fork of the Python Imaging Library PIL This library provides extensive file format support, an efficient internal representation, and powerful image processing capabilities. There are four subpackages: tk tk interface, qt PIL image wrapper for Qt , devel developme...

Huawei Nova 5i pro and Nova 5 Array Subscript Checksum Improperly Vulnerability

The Huawei Nova 5i pro and Nova 5 are both smartphones from the Chinese company Huawei Huawei. The security vulnerability in Huawei Nova 5i pro prior to 9.1.1.190 C00E190R6P2 and Nova 5 prior to 9.1.1.175 C00E170R3P2 stems from the system not adequately checking the value of values used as...

Pillow has an unspecified vulnerability

Pillow is a Python-based image processing library. a security vulnerability exists in versions of Pillow prior to 6.2.0, which can be exploited by attackers to cause a denial of service...

OPENSUSE-SU-2019:2529-1 Security update for libjpeg-turbo

This update for libjpeg-turbo fixes the following issues: - CVE-2019-2201: Several integer overflow issues and subsequent segfaults occurred in libjpeg-turbo, when attempting to compress or decompress gigapixel images. bsc1156402 This update was imported from the SUSE:SLE-15:Update update project...

Mozilla Firefox ESR < 24.2 Multiple Vulnerabilities

Binary data 701241.prm...

DOS attack in Pillow when processing specially crafted image files

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

Debian: Security Advisory (DLA-1968-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-16865

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...

CVE-2019-16865

An issue was discovered in Pillow before 6.2.0. When reading specially crafted invalid image files, the library can either allocate very large amounts of memory or take an extremely long period of time to process the image...