34 matches found
PT-2026-22058
Name of the Vulnerable Software and Affected Versions psd-tools versions prior to 1.12.2 Description psd-tools, a Python package for working with Adobe Photoshop PSD files, contains multiple issues. A lack of a length cap on zlib.decompress can lead to denial-of-service or out-of-memory crashes...
CVE-2020-10571
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
EUVD-2020-0150
Malware in sbrugna...
psd-tools code issue vulnerability
psd-tools is a Python package for reading Adobe Photoshop PSD files. A code issue vulnerability exists in versions of psd-tools prior to 1.9.4, no details of the vulnerability are provided at this time...
GHSA-22JR-VC7J-G762 Potential buffer overflow in psd-tools
Impact An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malformed PSD input data during decoding to the PIL.Image or NumPy format, leading to a Buffer Overflow. Patches Users of psd-tools version v1.8.37 to v1.9.3 should upgrade to...
aoirint-psdlayer2dirpy (>=20220819.1.0 <=20220819.2.0), hacktools (>=0.8.0 <=0.26.0) +1 more potentially affected by CVE-2020-10571 via psd-tools (>=1.8.38 <=1.9.28)
psd-tools PYPI version =1.8.38, =20220819.1.0, =0.8.0, =0.1.0, =0.5.1 Source cves: CVE-2020-10571 Source advisory: OSV:GHSA-22JR-VC7J-G762...
Potential buffer overflow in psd-tools
Impact An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malformed PSD input data during decoding to the PIL.Image or NumPy format, leading to a Buffer Overflow. Patches Users of psd-tools version v1.8.37 to v1.9.3 should upgrade to...
CVE-2020-10571
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
CVE-2020-10571
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
Design/Logic Flaw
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
add-psd-layer (=0.1.0), agkit (=0.27.0) +38 more potentially affected by CVE-2020-10571 via psd-tools (>=1.10.2 <=1.9.28)
psd-tools PYPI version =1.10.2, =0.1.2, =0.1.1, =0.1.0, =2.0.0, =4.1.0, =0.8.0, =0.1.0, =0.1.6, =2023.0.0, =1.1.0, =2024.0.0, =2024.0.1 and more Source cves: CVE-2020-10571 Source advisory: OSV:PYSEC-2020-91...
PYSEC-2020-91
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
PYSEC-2020-91
An issue was discovered in psd-tools before 1.9.4. The Cython implementation of RLE decoding did not check for malicious data...
CVE-2020-10571
The CVE-2020-10571 issue affects psd-tools prior to v1.9.4, where the Cython implementation of RLE decoding fails to validate input data. This can be triggered by malicious or malformed PSD input, with documented advisories describing a related buffer overflow scenario when the Cython path is use...