rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1

Vulnerabilities (85)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2019-16710	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Sep 23, 2019	ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c.
CVE-2019-16711	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Sep 23, 2019	ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.
CVE-2019-16712	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Sep 23, 2019	ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image.
CVE-2019-16713	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Sep 23, 2019	ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c.
CVE-2019-15139	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Aug 18, 2019	The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a diffe
CVE-2019-15140	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Aug 18, 2019	coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
CVE-2019-15141	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Aug 18, 2019	WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, an
CVE-2019-14981	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Aug 12, 2019	In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. It allows an attacker to cause a denial of service by sending a crafted file.
CVE-2019-14980	—	< 7.0.7.34-3.72.1	7.0.7.34-3.72.1	Aug 12, 2019	In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
CVE-2019-13454	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 9, 2019	ImageMagick 7.0.1-0 to 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c.
CVE-2019-13391	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 7, 2019	In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels.
CVE-2019-13311	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of a wand/mogrify.c error.
CVE-2019-13310	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c.
CVE-2019-13309	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of mishandling the NoSuchImage error in CLIListOperatorImages in MagickWand/operation.c.
CVE-2019-13308	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow in MagickCore/fourier.c in ComplexImage.
CVE-2019-13307	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling rows.
CVE-2019-13306	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of off-by-one errors.
CVE-2019-13305	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced strncpy and an off-by-one error.
CVE-2019-13304	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced assignment.
CVE-2019-13303	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/composite.c in CompositeImage.

CVE-2019-16710Sep 23, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c.
CVE-2019-16711Sep 23, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.
CVE-2019-16712Sep 23, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image.
CVE-2019-16713Sep 23, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c.
CVE-2019-15139Aug 18, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a diffe
CVE-2019-15140Aug 18, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
CVE-2019-15141Aug 18, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, an
CVE-2019-14981Aug 12, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. It allows an attacker to cause a denial of service by sending a crafted file.
CVE-2019-14980Aug 12, 2019
affected < 7.0.7.34-3.72.1fixed 7.0.7.34-3.72.1
In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
CVE-2019-13454Jul 9, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.1-0 to 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c.
CVE-2019-13391Jul 7, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCacheViewVirtualPixels.
CVE-2019-13311Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of a wand/mogrify.c error.
CVE-2019-13310Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c.
CVE-2019-13309Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of mishandling the NoSuchImage error in CLIListOperatorImages in MagickWand/operation.c.
CVE-2019-13308Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow in MagickCore/fourier.c in ComplexImage.
CVE-2019-13307Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling rows.
CVE-2019-13306Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of off-by-one errors.
CVE-2019-13305Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced strncpy and an off-by-one error.
CVE-2019-13304Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced assignment.
CVE-2019-13303Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/composite.c in CompositeImage.

Page 3 of 5