CImg 输入验证错误漏洞

CImg is a small open-source C++ toolkit for image processing, developed by GREYC. CImg has a vulnerability related to input validation. This vulnerability stems from integer overflows in the WHD size calculation within the loadpnm function. This can lead to the allocation of an insufficient buffe...

psd-tools: Compression module has unguarded zlib decompression, missing dimension validation, and hardening gaps

Summary A security review of the psdtools.compression module conducted against the fix/invalid-rle-compression branch, commits 7490ffa–2a006f5 identified the following pre-existing issues. The two findings introduced and fixed by those commits Cython buffer overflow, IndexError on lone repeat...