5 matches found
CVE-2019-25553
CEWE PHOTO IMPORTER 6.4.3 contains a denial of service vulnerability that allows local attackers to crash the application by importing a specially crafted image file. Attackers can create a malformed JPG file with an oversized buffer and trigger the crash through the import functionality during t...
Ubuntu 20.04 LTS : gThumb vulnerabilities (USN-5680-1)
The remote Ubuntu 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5680-1 advisory. It was discovered that gThumb did not properly managed memory when processing certain image files. If a user were tricked into opening a specially crafte...
DEBIAN-CVE-2020-36427
GNOME gThumb before 3.10.1 allows an application crash via a malformed JPEG image...
MGASA-2020-0040 Updated libjpeg packages fix security vulnerabilities
The updated packages fix security vulnerabilities: A signed integer overflow and subsequent segfault that occurred when attempting to decompress images with more than 715827882 pixels using the 64-bit C version of TJBench. Out-of-bounds write in tjDecompressToYUV2 and tjDecompressToYUVPlanes...
CVE-2009-2687
The exifreaddata function in the Exif module in PHP before 5.2.10 allows remote attackers to cause a denial of service crash via a malformed JPEG image with invalid offset fields, a different issue than CVE-2005-3353...