VYPR

rpm package

suse/GraphicsMagick&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/GraphicsMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (250)

  • CVE-2018-14435MedJul 20, 2018
    affected < 1.2.5-78.61.1fixed 1.2.5-78.61.1

    ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c.

  • CVE-2017-18271MedMay 18, 2018
    affected < 1.2.5-78.61.1fixed 1.2.5-78.61.1

    In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (CPU exhaustion) via a crafted MIFF image file.

  • CVE-2018-10805MedMay 8, 2018
    affected < 1.2.5-78.61.1fixed 1.2.5-78.61.1

    ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.

  • CVE-2018-10177MedApr 16, 2018
    affected < 1.2.5-78.52.1fixed 1.2.5-78.52.1

    In ImageMagick 7.0.7-28, there is an infinite loop in the ReadOneMNGImage function of the coders/png.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted mng file.

  • CVE-2017-18254MedMar 27, 2018
    affected < 1.2.5-78.47.1fixed 1.2.5-78.47.1

    An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2017-18251MedMar 27, 2018
    affected < 1.2.5-78.47.1fixed 1.2.5-78.47.1

    An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function ReadPCDImage in coders/pcd.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2018-9018MedMar 25, 2018
    affected < 1.2.5-78.47.1fixed 1.2.5-78.47.1

    In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c. Remote attackers could leverage this vulnerability to cause a crash and denial of service via a crafted mng file.

  • CVE-2017-18230MedMar 14, 2018
    affected < 1.2.5-78.44.1fixed 1.2.5-78.44.1

    An issue was discovered in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadCINEONImage in coders/cineon.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-18229MedMar 14, 2018
    affected < 1.2.5-78.52.1fixed 1.2.5-78.52.1

    An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows attackers to cause a denial of service via a crafted file, because file size is not properly used to restrict scanline, str

  • CVE-2017-18220HigMar 5, 2018
    affected < 1.2.5-78.44.1fixed 1.2.5-78.44.1

    The ReadOneJNGImage and ReadJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 allow remote attackers to cause a denial of service (magick/blob.c CloseBlob use-after-free) or possibly have unspecified other impact via a crafted file, a related issue to CVE-2017-11403.

  • CVE-2017-18219MedMar 5, 2018
    affected < 1.2.5-78.44.1fixed 1.2.5-78.44.1

    An issue was discovered in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted file that triggers an attempt at a large png_pixels array allocation.

  • CVE-2018-6405MedJan 30, 2018
    affected < 1.2.5-4.78.38.1fixed 1.2.5-4.78.38.1

    In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service.

  • CVE-2018-5685MedJan 14, 2018
    affected < 1.2.5-4.78.33.1fixed 1.2.5-4.78.33.1

    In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function (coders/bmp.c). Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value.

  • CVE-2017-18028MedJan 12, 2018
    affected < 1.2.5-4.78.38.1fixed 1.2.5-4.78.38.1

    In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a denial of service via a crafted file.

  • CVE-2018-5247MedJan 5, 2018
    affected < 1.2.5-4.78.28.2fixed 1.2.5-4.78.28.2

    In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.

  • CVE-2017-18022MedJan 5, 2018
    affected < 1.2.5-4.78.28.2fixed 1.2.5-4.78.28.2

    In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.

  • CVE-2017-17915HigDec 27, 2017
    affected < 1.2.5-4.78.33.1fixed 1.2.5-4.78.33.1

    In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadMNGImage in coders/png.c, related to accessing one byte before testing whether a limit has been reached.

  • CVE-2017-17912HigDec 27, 2017
    affected < 1.2.5-4.78.38.1fixed 1.2.5-4.78.38.1

    In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region.

  • CVE-2017-17884MedDec 27, 2017
    affected < 1.2.5-4.78.33.1fixed 1.2.5-4.78.33.1

    In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted PNG image file.

  • CVE-2017-17879HigDec 27, 2017
    affected < 1.2.5-4.78.33.1fixed 1.2.5-4.78.33.1

    In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.

Page 2 of 13