Lander Brandt has discovered a denial of service vulnerability in ImageIO, a library of utilities for parsing various image formats. Which apps as affected? It’s used in many OS X and iOS applications including: Tweetbot Safari Messages Mail Preview Some popular applications that do not use ImageIO include: Chrome Firefox Telegram The bug is a […]
Anyone who works in cybersecurity should read Practical Malware Analysis.
From ImageMagick forum: We have recently received vulnerability reports for certain coders, they include possible remote code execution and ability to render files on the local system. These vulnerabilities will be addressed in versions 7.0.1–1 and 6.9.3–10, which are due to be released by the weekend. The remote-code execution flaw (CVE-2016–3714) already has a name, […]