rpm package
suse/GraphicsMagick&distro=SUSE Linux Enterprise Software Development Kit 11 SP4
pkg:rpm/suse/GraphicsMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4
Vulnerabilities (250)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-10051 | Hig | 7.8 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 23, 2017 | Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. | |
| CVE-2016-10050 | Hig | 7.8 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 23, 2017 | Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file. | |
| CVE-2016-10049 | Hig | 7.8 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 23, 2017 | Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file. | |
| CVE-2016-10048 | Hig | 7.5 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 23, 2017 | Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors. | |
| CVE-2014-9840 | Med | 5.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 22, 2017 | ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file. | |
| CVE-2014-9839 | Hig | 7.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 22, 2017 | magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access). | |
| CVE-2014-9835 | Hig | 7.8 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 22, 2017 | Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file. | |
| CVE-2014-9834 | Hig | 7.8 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 22, 2017 | Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file. | |
| CVE-2014-9847 | Cri | 9.8 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 20, 2017 | The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact. | |
| CVE-2014-9846 | Cri | 9.8 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 20, 2017 | Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact. | |
| CVE-2014-9845 | Med | 5.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 20, 2017 | The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file. | |
| CVE-2014-9844 | Med | 5.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 20, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. | |
| CVE-2014-9853 | Med | 5.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 17, 2017 | Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. | |
| CVE-2015-8896 | Med | 6.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 15, 2017 | Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file. | |
| CVE-2015-8894 | Med | 5.5 | < 1.2.5-4.41.1 | 1.2.5-4.41.1 | Mar 15, 2017 | Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file. | |
| CVE-2017-6335 | Med | 5.5 | < 1.2.5-4.65.1 | 1.2.5-4.65.1 | Mar 14, 2017 | The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value in a CMYKA TIFF file. | |
| CVE-2016-10070 | Med | 5.5 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 3, 2017 | Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. | |
| CVE-2016-10065 | Hig | 7.8 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 3, 2017 | The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. | |
| CVE-2016-10068 | Med | 5.5 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 2, 2017 | The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. | |
| CVE-2016-10064 | Hig | 7.8 | < 1.2.5-4.62.1 | 1.2.5-4.62.1 | Mar 2, 2017 | Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. |
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.
- affected < 1.2.5-4.41.1fixed 1.2.5-4.41.1
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.
- affected < 1.2.5-4.65.1fixed 1.2.5-4.65.1
The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value in a CMYKA TIFF file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file.
- affected < 1.2.5-4.62.1fixed 1.2.5-4.62.1
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
Page 11 of 13