rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Module for Development Tools 15

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015

Vulnerabilities (83)

CVE	CVSS	Affected versions	Fixed in	Published	Description
CVE-2018-11625	—	< 7.0.7.34-3.9.1	7.0.7.34-3.9.1	May 31, 2018	In ImageMagick 7.0.7-37 Q16, SetGrayscaleImage in the quantize.c file allows attackers to cause a heap-based buffer over-read via a crafted file.
CVE-2018-11624	—	< 7.0.7.34-3.9.1	7.0.7.34-3.9.1	May 31, 2018	In ImageMagick 7.0.7-36 Q16, the ReadMATImage function in coders/mat.c allows attackers to cause a use after free via a crafted file.
CVE-2018-10805	—	< 7.0.7.34-3.9.1	7.0.7.34-3.9.1	May 8, 2018	ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.

CVE-2018-11625May 31, 2018
affected < 7.0.7.34-3.9.1fixed 7.0.7.34-3.9.1
In ImageMagick 7.0.7-37 Q16, SetGrayscaleImage in the quantize.c file allows attackers to cause a heap-based buffer over-read via a crafted file.
CVE-2018-11624May 31, 2018
affected < 7.0.7.34-3.9.1fixed 7.0.7.34-3.9.1
In ImageMagick 7.0.7-36 Q16, the ReadMATImage function in coders/mat.c allows attackers to cause a use after free via a crafted file.
CVE-2018-10805May 8, 2018
affected < 7.0.7.34-3.9.1fixed 7.0.7.34-3.9.1
ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.

Page 5 of 5