Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
image processing project image processing vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2016-8693
Double free vulnerability in the mem_close function in jas_stream.c in JasPer prior to 1.900.10 allows remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted BMP image to the imginfo command.
Jasper Project Jasper
Opensuse Opensuse 13.2
Fedoraproject Fedora 23
4.3
CVSSv2
CVE-2016-8691
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer prior to 1.900.4 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted XRsiz value in a BMP image to the imginfo command.
Jasper Project Jasper
Debian Debian Linux 8.0
Fedoraproject Fedora 25
1 Github repository
4.3
CVSSv2
CVE-2016-8692
The jpc_dec_process_siz function in libjasper/jpc/jpc_dec.c in JasPer prior to 1.900.4 allows remote malicious users to cause a denial of service (divide-by-zero error and application crash) via a crafted YRsiz value in a BMP image to the imginfo command.
Jasper Project Jasper
Fedoraproject Fedora 25
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2019-7149
A heap-based buffer over-read exists in the function read_srclines in dwarf_getsrclines.c in libdw in elfutils 0.175. A crafted input can cause segmentation faults, leading to denial-of-service, as demonstrated by eu-nm.
Elfutils Project Elfutils 0.175
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2017-1000229
Integer overflow bug in function minitiff_read_info() of optipng 0.7.6 allows an malicious user to remotely execute code or cause denial of service.
Optipng Project Optipng 0.7.6
Debian Debian Linux 7.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2016-2533
Buffer overflow in the ImagingPcdDecode function in PcdDecode.c in Pillow prior to 3.1.1 and Python Imaging Library (PIL) 1.1.7 and previous versions allows remote malicious users to cause a denial of service (crash) via a crafted PhotoCD file.
Python Imaging Project Python Imaging
Python Pillow
Debian Debian Linux 8.0
Debian Debian Linux 7.0
9.3
CVSSv2
CVE-2015-7801
Use-after-free vulnerability in OptiPNG 0.6.4 allows remote malicious users to execute arbitrary code via a crafted PNG file.
Optipng Project Optipng
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 15.10
Canonical Ubuntu Linux 12.04
4.3
CVSSv2
CVE-2016-9591
JasPer before version 2.0.12 is vulnerable to a use-after-free in the way it decodes certain JPEG 2000 image files resulting in a crash on the application using JasPer.
Jasper Project Jasper
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Server Eus 7.4
Redhat Enterprise Linux Workstation 6.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Server Eus 7.3
Debian Debian Linux 8.0
5.1
CVSSv2
CVE-2005-0399
Heap-based buffer overflow in GIF2.cpp in Firefox prior to 1.0.2, Mozilla before to 1.7.6, and Thunderbird prior to 1.0.2, and possibly other applications that use the same library, allows remote malicious users to execute arbitrary code via a GIF image with a crafted Netscape ex...
Mozilla Firefox 0.9.2
Mozilla Firefox 0.9.3
Mozilla Mozilla 1.4
Mozilla Mozilla 1.5
Mozilla Mozilla 1.5.1
Mozilla Mozilla 1.7
Mozilla Mozilla 1.7.1
Mozilla Thunderbird 0.7.1
Mozilla Thunderbird 0.7.2
Mozilla Firefox 0.10.1
Mozilla Firefox 0.8
Mozilla Firefox 1.0.1
Mozilla Mozilla 1.3
Mozilla Mozilla 1.6
Mozilla Mozilla 1.7.5
Mozilla Thunderbird 0.3
Mozilla Thunderbird 0.4
Mozilla Thunderbird 0.9
Mozilla Thunderbird 1.0
Mozilla Firefox 0.10
Mozilla Firefox 0.9
Mozilla Firefox 1.0
7.8
CVSSv2
CVE-2005-2975
io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ prior to 2.8.7 allows malicious users to cause a denial of service (infinite loop) via a crafted XPM image with a large number of colors.
Gnome Gdkpixbuf
Gnome Gtk
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4946
CVE-2024-30309
CVE-2024-4761
CVE-2024-30051
type confusion
memory leak
CVE-2024-30293
reflected XSS
CVE-2024-3126
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »