rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server 11 SP4
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2011%20SP4
Vulnerabilities (332)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2015-8957 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 20, 2017 | Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file. | |
| CVE-2016-7537 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file. | |
| CVE-2016-7533 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file. | |
| CVE-2016-7531 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file. | |
| CVE-2016-7529 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file. | |
| CVE-2016-7528 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file. | |
| CVE-2016-7522 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. | |
| CVE-2016-7519 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. | |
| CVE-2016-7515 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels. | |
| CVE-2014-9907 | Med | 6.5 | < 6.4.3.6-7.54.1 | 6.4.3.6-7.54.1 | Apr 19, 2017 | coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file. | |
| CVE-2017-7943 | Med | 6.5 | < 6.4.3.6-7.77.1 | 6.4.3.6-7.77.1 | Apr 18, 2017 | The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. | |
| CVE-2017-7942 | Med | 6.5 | < 6.4.3.6-7.77.1 | 6.4.3.6-7.77.1 | Apr 18, 2017 | The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. | |
| CVE-2017-7941 | Med | 6.5 | < 6.4.3.6-7.77.1 | 6.4.3.6-7.77.1 | Apr 18, 2017 | The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. | |
| CVE-2014-9837 | Med | 6.5 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Apr 11, 2017 | coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file. | |
| CVE-2017-7606 | Med | 6.5 | < 6.4.3.6-7.77.1 | 6.4.3.6-7.77.1 | Apr 9, 2017 | coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image | |
| CVE-2014-9829 | Med | 6.5 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Apr 5, 2017 | coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file. | |
| CVE-2014-9826 | Cri | 9.8 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Mar 30, 2017 | ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files. | |
| CVE-2014-9824 | Hig | 7.8 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Mar 30, 2017 | Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825. | |
| CVE-2014-9823 | Hig | 7.8 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Mar 30, 2017 | Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819. | |
| CVE-2014-9822 | Hig | 7.8 | < 6.4.3.6-7.45.1 | 6.4.3.6-7.45.1 | Mar 30, 2017 | Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file. |
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.
- affected < 6.4.3.6-7.54.1fixed 6.4.3.6-7.54.1
coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file.
- affected < 6.4.3.6-7.77.1fixed 6.4.3.6-7.77.1
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
- affected < 6.4.3.6-7.77.1fixed 6.4.3.6-7.77.1
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
- affected < 6.4.3.6-7.77.1fixed 6.4.3.6-7.77.1
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.
- affected < 6.4.3.6-7.77.1fixed 6.4.3.6-7.77.1
coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.
- affected < 6.4.3.6-7.45.1fixed 6.4.3.6-7.45.1
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.
Page 12 of 17