rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server 12 SP1
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP1
Vulnerabilities (149)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2016-7514 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 20, 2017 | The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. | |
| CVE-2016-7513 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 20, 2017 | Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors. | |
| CVE-2016-5010 | Med | 6.5 | < 6.8.8.1-33.1 | 6.8.8.1-33.1 | Apr 20, 2017 | coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF file. | |
| CVE-2015-8959 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 20, 2017 | coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file. | |
| CVE-2015-8958 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 20, 2017 | coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted SUN file. | |
| CVE-2015-8957 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 20, 2017 | Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file. | |
| CVE-2016-7537 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file. | |
| CVE-2016-7533 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file. | |
| CVE-2016-7531 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file. | |
| CVE-2016-7529 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file. | |
| CVE-2016-7528 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file. | |
| CVE-2016-7522 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. | |
| CVE-2016-7519 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. | |
| CVE-2016-7515 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels. | |
| CVE-2014-9907 | Med | 6.5 | < 6.8.8.1-40.1 | 6.8.8.1-40.1 | Apr 19, 2017 | coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file. | |
| CVE-2014-9837 | Med | 6.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Apr 11, 2017 | coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file. | |
| CVE-2014-9829 | Med | 6.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Apr 5, 2017 | coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file. | |
| CVE-2014-9826 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files. | |
| CVE-2014-9825 | Hig | 7.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824. | |
| CVE-2014-9824 | Hig | 7.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825. |
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified vectors.
- affected < 6.8.8.1-33.1fixed 6.8.8.1-33.1
coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted SUN file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted WPG file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted VIFF file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vectors related to the number of pixels.
- affected < 6.8.8.1-40.1fixed 6.8.8.1-40.1
coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
Page 2 of 8