9 matches found
OESA-2026-2428 python-pillow security update
Pillow is the friendly PIL fork by Alex Clark and Contributors. PIL is the Python Imaging \ Library by Fredrik Lundh and Contributors. As of 2019, Pillow development is supported by Tidelift. of CVE-2022-22815,CVE-2022-22816 Security Fixes: Pillow is a Python imaging library. From version 10.3.0 ...
CVE-2026-42311
Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...
EUVD-2025-23874
Malicious code in bioql PyPI...
CVE-2025-6632
A maliciously crafted PSD file, when linked or imported into Autodesk 3ds Max, can force an Out-of-Bounds Read vulnerability. A malicious actor can leverage this vulnerability to cause a crash, read sensitive data, or execute arbitrary code in the context of the current process...
Alibaba Cloud Linux 3 : 0025: gimp:2.8 (ALINUX3-SA-2024:0025)
The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0025 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-44442: A parsing vulnerability wa...
gimp: PSD buffer overflow RCE
A parsing vulnerability was found in the GNU Image Manipulation Program GIMP. This flaw allows an unauthenticated, remote attacker to trick a GIMP user into opening a malicious PSD file, possibly enabling the execution of unauthorized code within the GIMP process...
PT-2023-9366 · Gimp +9 · Gimp +9
Name of the Vulnerable Software and Affected Versions: GIMP versions prior to 2.10.18-1ubuntu0.1 GIMP versions prior to 2.10.22-4+deb11u1 GIMP versions prior to 2.10.34-1+deb12u1 Description: GIMP GNU Image Manipulation Program contains a vulnerability related to improper handling of crafted PSD...
ImageMagick 'ReadPSDLayers' function memory leak vulnerability
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory leak vulnerability exists in the 'ReadPSDLayers' function of ImageMagick's coders/psd.c file, which can be...
USN-62-1: imagemagick vulnerability
Andrei Nigmatulin discovered a potential buffer overflow in the PhotoShop Document image decoding function of ImageMagick. Decoding a malicious PSD image which specifies more than the allowed 24 channels might result in execution of arbitrary code with the user's privileges. Since ImageMagick can...