• Diffusion Digest
  • Posts
  • Diffusion Digest: SD3 Flop, Krita Plugin Levelup, ComfyUI Security Breach (June 16, 2024)

Diffusion Digest: SD3 Flop, Krita Plugin Levelup, ComfyUI Security Breach (June 16, 2024)

June 14, 2024

🎨 Welcome to DiffusionDigest for the week of June 9, 2024! In this issue, we dive into the release of Stable Diffusion 3 Medium, explore exciting updates to the Krita Diffusion plugin, and share a critical security warning for ComfyUI users.

🆕 Stable Diffusion 3 Medium Disappoints  

Stability AI's highly anticipated Stable Diffusion 3 Medium model has arrived, but initial user feedback suggests it falls short of expectations. Despite boasting 2 billion parameters and promising high-quality photorealistic images, the model struggles with anatomy rendering and suffers from restrictive licensing.

  • 🧩 Improvements in prompt adherence and reduced concept bleeding

  • 🙅‍♂️ Disappointing anatomy rendering and restrictive licensing

  • 🌄 Best suited for non-human subjects like landscapes

⚠️ PSA: Malicious Code in ComfyUI_LLMVISION Node 

Reddit user, _roblaughter_, discovered a severe security issue in the ComfyUI_LLMVISION node created by user u/AppleBotzz. If you have installed and used this node, your sensitive data, including browser passwords, credit card information, and browsing history, may have been compromised and sent to a Discord server via webhook.

The malicious code is found within the custom wheels for the OpenAI and Anthropic libraries in the node's requirements.txt file. Two versions of the malicious packages (1.16.2 and 1.30.2) have been identified, each with its own set of malicious files and behaviors.

To check if you're affected:

  1. Look for directories with the format pre_XXXX_suf in your Temp folder

  2. Check for compromised packages in python_embedded\site-packages

  3. Check your Windows registry for a specific key

If you find any evidence of compromise, follow these steps to clean up your system:

  1. Remove the malicious packages

  2. Search for and remove specific files

  3. Check and remove the registry entry

  4. Run a malware scanner

  5. Change all your passwords

It's important to note that this was a deliberate act by the creator of the node, as the code was updated twice to make it harder to spot.

🖌️ Krita Diffusion Plugin Update: Seamless Region Support 

The Krita Diffusion plugin (v1.18.0) has introduced a game-changing feature: seamless region support. This update takes regional prompts to the next level, offering:

  • 🎭 Regions linked to layers, with layer alpha serving as an attention mask

  • 🖼️ Region mask for inpainting

  • 🎨 Live painting focusing on the active layer's region

  • ✂️ Automatic detection and cropping of affected regions during inpainting

  • 🧩 Individual prompt setup for each tile in tiled upscaling

  • 🔌 IP-Adapter and ControlNet attachment to regions

Developed by Auspicious_Firefly, the open-source plugin can run entirely on local ComfyUI or via a cloud service. Users are encouraged to provide feedback to help refine the plugin further.

Reply

or to participate.