CVE-2023-30548 Path traversal vulnerability in gatsby-plugin-sharp

gatsby-plugin-sharp is a plugin for the gatsby framework which exposes functions built on the Sharp image processing library. The gatsby-plugin-sharp plugin prior to versions 5.8.1 and 4.25.1 contains a path traversal vulnerability exposed when running the Gatsby develop server gatsby develop. It...

OpenImageIO Project OpenImageIO TGAInput::decode_pixel() out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2023-1708 OpenImageIO Project OpenImageIO TGAInput::decodepixel out-of-bounds read vulnerability March 30, 2023 CVE Number CVE-2023-22845 SUMMARY An out-of-bounds read vulnerability exists in the TGAInput::decodepixel functionality of OpenImageIO Project OpenImage...

OpenImageIO Project OpenImageIO FitsOutput::close() denial of service vulnerability

Talos Vulnerability Report TALOS-2023-1709 OpenImageIO Project OpenImageIO FitsOutput::close denial of service vulnerability March 30, 2023 CVE Number CVE-2023-24472 SUMMARY A denial of service vulnerability exists in the FitsOutput::close functionality of OpenImageIO Project OpenImageIO v2.4.7.1...

USN-5974-1: GraphicsMagick vulnerabilities

It was discovered that GraphicsMagick was not properly performing bounds checks when processing TGA image files, which could lead to a heap buffer overflow. If a user or automated system were tricked into processing a specially crafted TGA image file, an attacker could possibly use this issue to...

About the security content of watchOS 9.4

About the security content of watchOS 9.4 This document describes the security content of watchOS 9.4. About Apple security updates For our customers' protection, Apple doesn't disclose, discuss, or confirm security issues until an investigation has occurred and patches or releases are available...

PT-2023-21446 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: An out-of-bounds read was addressed with improved input validation. Processing an image may result in disclosure of process memory. Recommendations: For versions prior to 13.3, update to macOS Ventura...

PT-2023-21442 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: An out-of-bounds read was addressed with improved input validation. Processing an image may result in disclosure of process memory. Recommendations: For versions prior to 13.3, update to macOS Ventura...

PT-2023-8409 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 tvOS versions prior to 16.4 iOS versions prior to 16.4 iPadOS versions prior to 16.4 watchOS versions prior to 9.4 Description: The issue is related to an out-of-bounds read in memory, which may allow a remote...

PT-2023-19017 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 macOS Big Sur versions prior to 11.7.5 Description: The issue was addressed with improved checks. Processing a maliciously crafted image may result in disclosure of process memory. Recommendations: For macOS...

PT-2023-21443 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: An out-of-bounds read was addressed with improved input validation. Processing an image may result in disclosure of process memory. Recommendations: For versions prior to 13.3, update to macOS Ventura...

PT-2023-21427 · Apple · Ipados +4

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 tvOS versions prior to 16.4 iOS versions prior to 16.4 iPadOS versions prior to 16.4 watchOS versions prior to 9.4 Description: An out-of-bounds read issue was addressed with improved input validation. Processing ...

PT-2023-4696 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.3 Description: An out-of-bounds read issue was addressed with improved input validation. Processing an image may result in disclosure of process memory. This issue may allow an attacker to gain unauthorized access t...

Adobe Photoshop Memory Misreference Vulnerability

Adobe Photoshop is a set of image processing software from the American company Audobee Adobe. The software is mainly used for processing pictures. A memory misreference vulnerability exists in Adobe Photoshop. The vulnerability stems from a mix-up in the program's instructions responsible for...

[SECURITY] Fedora 38 Update: siril-1.0.6-6.fc38

Siril is an image processing tool specially tailored for noise reduction and improving the signal/noise ratio of an image from multiple captures, as required in astronomy. Siril can align automatically or manually, stack and enhance pictures from various file formats, even images sequences movies...

Fedora: Security Advisory for siril (FEDORA-2023-a5e10b188a)

The remote host is missing an update for the Copyright C 2023 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Debian: Security Advisory (DLA-1168-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-23519

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Processing an image may lead to a denial-of-service...

Memory corruption

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 9.3, tvOS 16.3, macOS Ventura 13.2, iOS 16.3 and iPadOS 16.3. Processing an image may lead to a denial-of-service...

CVE-2022-32830

An out-of-bounds read issue was addressed with improved bounds checking. This issue is fixed in tvOS 15.6, iOS 15.6 and iPadOS 15.6. Processing a maliciously crafted image may lead to disclosure of user information...

PT-2023-13202 · Apple · Ios +2

Name of the Vulnerable Software and Affected Versions: Apple tvOS versions prior to 15.6 Apple iOS versions prior to 15.6 Apple iPadOS versions prior to 15.6 Description: An out-of-bounds read issue was addressed with improved bounds checking. Processing a maliciously crafted image may lead to...