MiracleLinux 8 : python-pillow-5.1.1-16.el8 (AXSA:2021-2760:01)

The remote MiracleLinux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2021-2760:01 advisory. python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25287 python-pillow: Out-of-bounds read in J2K image reader CVE-2021-25288...

EUVD-2017-2981

Malware in sbrugna...

EUVD-2017-18082

Malware in sbrugna...

K000156693: Multiple ImageMagick vulnerabilities

Security Advisory Description CVE-2016-7101 The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service out-of-bounds read via a large row value in an sgi file. CVE-2016-7513 Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a...

CVE-2023-42295

An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the readrleimage function of file bifs/unquantize.c...

SUSE CVE-2023-42295

An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the readrleimage function of file bifs/unquantize.c...

DEBIAN-CVE-2023-42295

An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the readrleimage function of file bifs/unquantize.c...

OpenImageIO Input Validation Error Vulnerability

OpenImageIO is OpenImageIO open source an image processing library . With an easy to use interface and a large number of supported image formats. A security vulnerability exists in OpenImageIO oiio version v.2.4.12.0, which originated from a vulnerability that allows an attacker to execute...

CVE-2023-42295

An issue in OpenImageIO oiio v.2.4.12.0 allows a remote attacker to execute arbitrary code and cause a denial of service via the readrleimage function of file bifs/unquantize.c...

PT-2023-28310 · Unknown +1 · Openimageio +1

Name of the Vulnerable Software and Affected Versions: OpenImageIO oiio version 2.4.12.0 Description: An issue in OpenImageIO oiio allows a remote attacker to execute arbitrary code and cause a denial of service via the read rle image function of file bifs/unquantize.c. Recommendations: For...

SUSE CVE-2017-11360

The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge numberpixels value...

Buffer overflow

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

CVE-2020-35655

In Pillow before 8.1.0, SGIRleDecode has a 4-byte buffer over-read when decoding crafted SGI RLE image files because offsets and length tables are mishandled...

Gentoo Linux Buffer Overflow Vulnerability

Gentoo is an open source Linux system from the Gentoo Foundation. Gentoo Linux prior to version 8.1.0 suffers from a buffer overflow vulnerability that stems from improper handling of system offsets and length tables, where SGIRleDecode has a 4-byte buffer overflow when decoding a carefully craft...

The vulnerability of the ReadRLEImage function (coder/rle.c) in the cross-platform library for working with graphics in GraphicsMagick, allowing a hacker to cause a service failure.

The vulnerability of the ReadRLEImage function coder/rle.c in the cross-platform library for working with graphics in GraphicsMagick is related to a buffer overflow vulnerability. Exploiting this vulnerability could allow an attacker to cause a service failure by using a specially created RLE fil...

graphicsmagick/coder_RLE_fuzzer: Use-of-uninitialized-value in ReadRLEImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5163026345885696 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderRLEfuzzer Fuzz target binary: coderRLEfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

CVE-2017-14733

ReadRLEImage in coders/rle.c in GraphicsMagick 1.3.26 mishandles RLE headers that specify too few colors, which allows remote attackers to cause a denial of service heap-based buffer over-read and application crash via a crafted file...

CVE-2017-11352

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144...

CVE-2017-11352

In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144...