Lucene search
K

15 matches found

OSV
OSV
added 2026/04/14 3:5 p.m.9 views

CLSA-2026-1776179155 Fix of 8 CVEs

SECURITY UPDATE: fix division by zero in YUV coder - debian/patches/CVE-2026-25799.patch: fix division by zero in YUV coder - CVE-2026-25799 SECURITY UPDATE: fix NULL pointer dereference in SFW coder - debian/patches/CVE-2026-25795.patch: fix NULL pointer dereference in SFW coder - CVE-2026-25795...

7.5CVSS6.6AI score0.00429EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2026/03/16 12:0 a.m.2 views

Stegano 2.3.0

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit LSB technique. It is possible to use a more advanced LSB method based on integers sets. The sets Sieve of...

5.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2026/02/24 3:33 p.m.6 views

ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths

Summary In ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per invocation that can be exploited for denial of service. Direct leak of 13512 bytes in 1 objects allocated from: 0 0x7f5c11e27887 in...

7.5CVSS5.4AI score0.00376EPSS
Exploits0References5Affected Software18
OSV
OSV
added 2026/02/24 3:33 p.m.4 views

GHSA-G2PR-QXJG-7R2W ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths

Summary In ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per invocation that can be exploited for denial of service. Direct leak of 13512 bytes in 1 objects allocated from: 0 0x7f5c11e27887 in...

5.3CVSS5.5AI score0.00376EPSS
Exploits0References5
OSV
OSV
added 2026/02/24 1:16 a.m.4 views

UBUNTU-CVE-2026-25796

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per...

7.5CVSS5.8AI score0.00376EPSS
Exploits0References5
CVE
CVE
added 2026/02/24 12:57 a.m.30 views

CVE-2026-25796

CVE-2026-25796 affects ImageMagick: the ReadSTEGANOImage() function (coders/stegano.c) fails to free the watermark object on three early-return paths, causing a definite memory leak (~13.5 KB per invocation) that can be exploited for denial of service. The issue is mitigated by patches in version...

7.5CVSS5.5AI score0.00376EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/24 12:57 a.m.1 views

CVE-2026-25796 ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return paths

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per...

5.3CVSS5.9AI score0.00376EPSS
Exploits0References1
Snyk
Snyk
added 2026/02/24 12:57 a.m.2 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q8-OpenMP-x64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package ar...

7.5CVSS6AI score0.00376EPSS
Exploits0References3
Snyk
Snyk
added 2026/02/24 12:57 a.m.1 views

Missing Release of Memory after Effective Lifetime

Overview Affected versions of this package are vulnerable to Missing Release of Memory after Effective Lifetime in the ReadSTEGANOImage function. An attacker can cause the application to exhaust system memory and become unavailable. Remediation A fix was pushed into the master branch but not yet...

7.5CVSS5.5AI score0.00376EPSS
Exploits0References3
AlpineLinux
AlpineLinux
added 2026/02/24 12:57 a.m.3 views

CVE-2026-25796

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per...

7.5CVSS5.6AI score0.00376EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.6 views

PT-2026-21602

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 Description ImageMagick is software used for editing and manipulating digital images. A memory leak exists in the ReadSTEGANOImage function coders/stegano.c due to...

9.8CVSS6AI score0.00594EPSS
Exploits0References172
CNNVD
CNNVD
added 2026/02/24 12:0 a.m.10 views

ImageMagick 安全漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It allows for reading, converting, and writing images in various formats. Versions of ImageMagick prior to 7.1.2-15 and 6.9.13-40 contained security vulnerabilities. These vulnerabilities stemmed...

7.5CVSS7.2AI score0.00376EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/02/24 12:0 a.m.5 views

CVE-2026-25796

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, in ReadSTEGANOImage coders/stegano.c, the watermark Image object is not freed on three early-return paths, resulting in a definite memory leak 13.5KB+ per...

7.5CVSS5.9AI score0.00376EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2019/08/15 3:26 p.m.144 views

The Hidden Bee infection chain, part 1: the stegano pack

About a year ago, we described the Hidden Bee miner delivered by the Underminer Exploit Kit. Hidden Bee has a complex and multi-layered internal structure that is unusual among cybercrime toolkits, making it an interesting phenomenon on the threat landscape. That's why we're dedicating a series o...

10CVSS9.5AI score0.93688EPSS
Exploits5
The Hacker News
The Hacker News
added 2016/12/06 9:8 p.m.257 views

Hacking Millions with Just an Image — Recipe: Pixels, Ads & Exploit Kit

If you have visited any popular mainstream website over the past two months, your computer may have been infected — Thanks to a new exploit kit discovered by security researchers. Researchers from antivirus provider ESET released a report on Tuesday stating that they have discovered an exploit ki...

10CVSS7.9AI score0.94354EPSS
Exploits6
Rows per page
Query Builder