CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

Heap overflow

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

CVE-2017-17786

GIMP 2.8.22 is affected by CVE-2017-17786 due to a heap-based buffer over-read in the TGA importer (ReadImage in plug-ins/common/file-tga.c), triggered by an unexpected RGBA bits-per-pixel value. Public references show this affects various Linux distributions and that patches exist (e.g., openSUS...

CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

GIMP 'ReadImage' Function Buffer Overflow Vulnerability

GIMP GNU Image Manipulation Program, GNU Image Manipulation Program is a cross-platform open source image processing software developed by the GIMP team. The software enables a variety of image processing, including photo retouching, image compositing and image creation. A buffer overflow...

CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

UBUNTU-CVE-2017-17786

In GIMP 2.8.22, there is a heap-based buffer over-read in ReadImage in plug-ins/common/file-tga.c related to bgr2rgb.part.1 via an unexpected bits-per-pixel value for an RGBA image...

sam2p integer overflow vulnerability (CNVD-2017-36354)

sam2p is a command-line utility that can convert many raster bitmap image formats such as GIF, JPG/JPEG and PNG to PostScript or PDF files. An integer overflow vulnerability exists in input-bmp.ci in the ReadImage function in sam2p version 0.49.4, for which there is currently no detailed...

UBUNTU-CVE-2017-16663

In sam2p 0.49.4, there are integer overflows with resultant heap-based buffer overflows in input-bmp.ci in the function ReadImage, because "width height" multiplications occur unsafely...

Integer overflow

In sam2p 0.49.4, there are integer overflows with resultant heap-based buffer overflows in input-bmp.ci in the function ReadImage, because "width height" multiplications occur unsafely...

CVE-2017-16663

In sam2p 0.49.4, there are integer overflows with resultant heap-based buffer overflows in input-bmp.ci in the function ReadImage, because "width height" multiplications occur unsafely...

CVE-2017-16663

In sam2p 0.49.4, there are integer overflows with resultant heap-based buffer overflows in input-bmp.ci in the function ReadImage, because "width height" multiplications occur unsafely...

ImageMagick Denial of Service Vulnerability (CNVD-2017-20999)

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A denial of service vulnerability exists in the 'ReadImage' function of the MagickCore/constitute.c file in ImageMagic...

DEBIAN-CVE-2017-12675

In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service...

CVE-2017-12675

In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service...

UBUNTU-CVE-2017-12675

In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service...

OpenExif 'ExifImageFile::readImage' Function Denial of Service Vulnerability

OpenExif is an object-oriented library for accessing image files in Exif format. A security vulnerability exists in the 'ExifImageFile::readImage' function of the ExifImageFileRead.cpp file in OpenExif version 2.1.4. A remote attacker can exploit this vulnerability to cause a denial of service...

CVE-2017-11118

The CVE-2017-11118 entry concerns OpenExif 2.1.4. The vulnerability exists in ExifImageFileRead.cpp within the function ExifImageFile::readImage, where processing a specially crafted JPEG can be exploited by remote attackers to trigger a denial of service via an infinite loop and high CPU usage. ...

AutoTrace heap buffer overflow vulnerability (CNVD-2017-08538)

AutoTrace is a set of software for converting bitmap files Bitmap to vector files Vector. A heap buffer overflow vulnerability exists in the 'ReadImage' function of input-tga.c:528:7 in the libautotrace.a file in AutoTrace version 0.31.1. An attacker could exploit this vulnerability to execute...