USN-3212-2: LibTIFF regression

USN-3212-1 fixed vulnerabilities in LibTIFF. Unfortunately, some of the security patches were misapplied, which caused a regression when processing certain images. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that LibTIFF...

ImageWorsener Denial of Service Vulnerability (CNVD-2017-08095)

ImageWorsener is a set of image scaling and processing utilities. A security vulnerability exists in the 'iwgetui16le' function in the imagew-util.c:405:23 of the libimageworsener.a file in ImageWorsener version 1.3.1. A remote attacker can exploit this vulnerability to cause a denial of service...

UBUNTU-CVE-2017-9141

In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c...

CVE-2017-9117

In LibTIFF 4.0.6 and possibly other versions, the program processes BMP images without verifying that biWidth and biHeight in the bitmap-information header match the actual input, as demonstrated by a heap-based buffer over-read in bmp2tiff. NOTE: mentioning bmp2tiff does not imply that the...

CVE-2016-7514

The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service out-of-bounds read via a crafted PSD file...

CVE-2017-3036

Adobe Acrobat Reader versions 11.0.19 and earlier, 15.006.30280 and earlier, 15.023.20070 and earlier have an exploitable memory corruption vulnerability in image conversion related to processing of the PCX picture exchange file format. Successful exploitation could lead to arbitrary code executi...

Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4015383)

This host is missing an important security update according to Microsoft Security update KB4015383 SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

Microsoft Windows 'libjpeg' Information Disclosure Vulnerability (KB4014794)

This host is missing an important security update according to Microsoft KB4014794. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescripti...

libjpeg Information Disclosure Vulnerability

An information disclosure vulnerability exists within the open-source libjpeg image-processing library where it fails to properly handle objects in memory, allowing an attacker to retrieve information that could lead to an Address Space Layout Randomization ASLR bypass. An attacker who successful...

Denial Of Service (DoS) Via Image Feature Extraction

openCV is vulnerable to denial of service DoS attacks. The attacks are possible when a seed image is processed to extract features with openCV. When freeing a matrix allocated for image processing, it leads to segmentation fault through vectors involving corrupt chunks...

CVE-2017-7623

The CVE-2017-7623 entry corresponds to ImageWorsener 1.3.0’s iwmiffr_convert_row32 function in imagew-miff.c, where a crafted file can trigger a heap-based buffer over-read leading to denial of service. Affected component: libimageworsener.a inside ImageWorsener 1.3.0. The connected documents con...

ImageWorsener 'iwgif_record_pixel()' function remote heap buffer overflow vulnerability

ImageWorsener is a cross-platform command line utility and library for image scaling and other image processing. It has full support for PNG, JPEG, and BMP formats, experimental support for WebP, read-only support for GIF, and limited support for some other image formats. A remote heap buffer...

DEBIAN-CVE-2017-7595

The JPEGSetupEncode function in tiffjpeg.c in LibTIFF 4.0.7 allows remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted image...

UBUNTU-CVE-2017-7598

tifdirread.c in LibTIFF 4.0.7 might allow remote attackers to cause a denial of service divide-by-zero error and application crash via a crafted image...

CVE-2016-9557

Integer overflow in jasimage.c in JasPer before 1.900.25 allows remote attackers to cause a denial of service application crash via a crafted file...

Memory Corruption Vulnerability in GIF Image Processing by Universal Picture Viewer

Universal Picture Viewer is a picture viewing software. Universal Picture Viewer has a memory corruption vulnerability when dealing with GIF format images, which allows an attacker to construct a malformed GIF format that can cause the program to crash, and if successfully exploited, can lead to...

ImageMagick Denial of Service Vulnerability (CNVD-2017-03844)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability in encoder/ pict.c in versions prior to ImageMagick 7.0.5-0 allows remote attackers ...

CVE-2017-5849

tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote attackers to cause a denial of service out-of-bounds read and write via a crafted tiff image file, related to transposing width and height values...

CVE-2017-5849

tiffttopnm in netpbm 10.47.63 does not properly use the libtiff TIFFRGBAImageGet function, which allows remote attackers to cause a denial of service out-of-bounds read and write via a crafted tiff image file, related to transposing width and height values...

Integer overflow

Integer overflow in the jpcdectiledecode function in jpcdec.c in JasPer before 1.900.12 allows remote attackers to have unspecified impact via a crafted image file, which triggers a heap-based buffer overflow...