310 matches found
SUSE CVE-2014-9679
Integer underflow in the cupsRasterReadPixels function in filter/raster.c in CUPS before 2.0.2 allows remote attackers to have unspecified impact via a malformed compressed raster file, which triggers a buffer overflow...
SUSE CVE-2017-3079
Adobe Flash Player versions 25.0.0.171 and earlier have an exploitable memory corruption vulnerability in the internal representation of raster data. Successful exploitation could lead to arbitrary code execution...
PT-2022-36787 · Apache · Apache Commons Imaging
Name of the Vulnerable Software and Affected Versions: Apache Commons Imaging affected versions not specified Description: A security exception occurs in the java.desktop/java.awt.image.DataBufferInt and java.desktop/java.awt.image.Raster.createPackedRaster functions, which are called by the...
CVE-2021-40162
A maliciously crafted TIF, PICT, TGA, or RLC files in Autodesk Image Processing component may be forced to read beyond allocated boundaries when parsing the TIFF, PICT, TGA, or RLC files. This vulnerability may be exploited to execute arbitrary code...
PT-2022-37313 · Git +1 · Skia
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided description. Description: The issue is related to a heap-buffer-overflow read error. Technical details about the crash include the SkPath::Iter::next function, SkRegion::setPath...
CVE-2021-40398
An out-of-bounds write vulnerability exists in the parserasterdata functionality of Accusoft ImageGear 19.10. A specially-crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger this vulnerability...
PT-2022-11227 · Accusoft · Accusoft Imagegear
Name of the Vulnerable Software and Affected Versions: Accusoft ImageGear version 19.10 Description: An out-of-bounds write issue exists in the parse raster data functionality. A specially-crafted malformed file can lead to memory corruption. An attacker can provide a malicious file to trigger th...
The vulnerability of the getrgb function in the Pillow library for working with raster graphics allows a hacker to cause a service failure.
The vulnerability of the getrgb function in the Pillow library for working with raster graphics is related to an uncontrolled resource consumption. Exploiting this vulnerability allows a remote attacker to cause service interruptions...
The vulnerability of the gif_process_raster function in the fromgif.c component of the SIXEL Libsixel encoder/decoder implementation allows a attacker to cause a service failure.
The vulnerability of the gifprocessraster function in the fromgif.c component of the SIXEL Libsixel encoder/decoder implementation is related to the output of the operation beyond the buffer boundaries in memory. Exploiting this vulnerability allows a remote attacker to cause a service failure...
[SECURITY] Fedora 35 Update: gdal-3.3.3-1.fc35
Geospatial Data Abstraction Library GDAL/OGR is a cross platform C++ translator library for raster and vector geospatial data formats. As a library, it presents a single abstract data model to the calling application for all supported formats. It also comes with a variety of useful commandline...
The vulnerability of the Windows GDI component in Microsoft Windows operating systems allows attackers to escalate their privileges and execute arbitrary code.
The vulnerability of the Windows GDI component in Microsoft Windows systems is related to deficiencies in access control when processing raster objects. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary code...
DEBIAN-CVE-2020-21050
Libsixel prior to v1.8.3 contains a stack buffer overflow in the function gifprocessraster at fromgif.c...
GHSA-7QCC-G2M9-8533 Null pointer deference in fltk
An issue was discovered in the fltk crate before 0.15.3 for Rust. There is a NULL pointer dereference during attempted use of a non-raster image for a window icon...
Null pointer deference in fltk
An issue was discovered in the fltk crate before 0.15.3 for Rust. There is a NULL pointer dereference during attempted use of a non-raster image for a window icon...
The vulnerability of the Pillow library for working with raster graphics, related to reading beyond the allowed buffer data limits, allows a hacker to gain access to confidential data.
The vulnerability of the Pillow library for working with raster graphics relates to reading data beyond the allowed buffer limits. Exploiting this vulnerability could allow a malicious actor to gain access to confidential data...
CVE-2021-0562
In RasterIntraUpdate of motionest.cpp, there is a possible out of bounds read due to an incorrect bounds check. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Andro...
CVE-2021-21833
An improper array index validation vulnerability exists in the TIF IPplanarrasterunpack functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...
Input validation
An improper array index validation vulnerability exists in the TIF IPplanarrasterunpack functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to an out-of-bounds write. An attacker can provide a malicious file to trigger this vulnerability...
PT-2021-14803 · Accusoft · Accusoft Imagegear
Name of the Vulnerable Software and Affected Versions: Accusoft ImageGear version 19.9 Description: An issue exists in the TIF IP planar raster unpack functionality where improper array index validation can occur. This can be triggered by a specially crafted malformed file, leading to an...
Moderate: Red Hat Security Advisory: sane-backends security update
An update for sane-backends is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...