rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Module for Development Tools 15 SP1

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP1

Vulnerabilities (85)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2019-13302	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/fourier.c in ComplexImages.
CVE-2019-13301	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has memory leaks in AcquireMagickMemory because of an AnnotateImage error.
CVE-2019-13300	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling columns.
CVE-2019-13299	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/pixel-accessor.h in GetPixelChannel.
CVE-2019-13298	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/pixel-accessor.h in SetPixelViaPixelInfo because of a MagickCore/enhance.c error.
CVE-2019-13297	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled.
CVE-2019-13296	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value.
CVE-2019-13295	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 5, 2019	ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a width of zero is mishandled.
CVE-2019-13137	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 1, 2019	ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadPSImage in coders/ps.c.
CVE-2019-13136	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 1, 2019	ImageMagick before 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c.
CVE-2019-13135	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 1, 2019	ImageMagick before 7.0.8-50 has a "use of uninitialized value" vulnerability in the function ReadCUTImage in coders/cut.c.
CVE-2019-13134	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 1, 2019	ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadVIFFImage in coders/viff.c.
CVE-2019-13133	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jul 1, 2019	ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadBMPImage in coders/bmp.c.
CVE-2019-12979	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.
CVE-2019-12978	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.
CVE-2019-12977	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.
CVE-2019-12976	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.
CVE-2019-12975	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c.
CVE-2019-12974	—	< 7.0.7.34-3.67.1	7.0.7.34-3.67.1	Jun 26, 2019	A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image.
CVE-2019-11598	—	< 7.0.7.34-3.61.3	7.0.7.34-3.61.3	Apr 29, 2019	In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. This is related to SetGrayscaleImage in MagickCore

CVE-2019-13302Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/fourier.c in ComplexImages.
CVE-2019-13301Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has memory leaks in AcquireMagickMemory because of an AnnotateImage error.
CVE-2019-13300Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling columns.
CVE-2019-13299Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/pixel-accessor.h in GetPixelChannel.
CVE-2019-13298Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/pixel-accessor.h in SetPixelViaPixelInfo because of a MagickCore/enhance.c error.
CVE-2019-13297Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is mishandled.
CVE-2019-13296Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has direct memory leaks in AcquireMagickMemory because of an error in CLIListOperatorImages in MagickWand/operation.c for a NULL value.
CVE-2019-13295Jul 5, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a width of zero is mishandled.
CVE-2019-13137Jul 1, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadPSImage in coders/ps.c.
CVE-2019-13136Jul 1, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick before 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c.
CVE-2019-13135Jul 1, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick before 7.0.8-50 has a "use of uninitialized value" vulnerability in the function ReadCUTImage in coders/cut.c.
CVE-2019-13134Jul 1, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadVIFFImage in coders/viff.c.
CVE-2019-13133Jul 1, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadBMPImage in coders/bmp.c.
CVE-2019-12979Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. This is related to AcquireImage in magick/image.c.
CVE-2019-12978Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.
CVE-2019-12977Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.
CVE-2019-12976Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.
CVE-2019-12975Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c.
CVE-2019-12974Jun 26, 2019
affected < 7.0.7.34-3.67.1fixed 7.0.7.34-3.67.1
A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image.
CVE-2019-11598Apr 29, 2019
affected < 7.0.7.34-3.61.3fixed 7.0.7.34-3.61.3
In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. This is related to SetGrayscaleImage in MagickCore

Page 4 of 5