rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Server 12 SP2

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%2012%20SP2

Vulnerabilities (230)

CVE	Sev	CVSS	Affected versions	Fixed in	Published	Description
CVE-2017-8353	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8352	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8351	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8350	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8349	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8348	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8347	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadEXRImage function in exr.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8346	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8345	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8344	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadPCXImage function in pcx.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8343	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 30, 2017	In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2016-7530	Med	6.5	< 6.8.8.1-71.12.1	6.8.8.1-71.12.1	Apr 20, 2017	The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVE-2017-7943	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 18, 2017	The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7942	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 18, 2017	The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7941	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 18, 2017	The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7606	Med	6.5	< 6.8.8.1-70.1	6.8.8.1-70.1	Apr 9, 2017	coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image
CVE-2017-5511	Cri	9.8	< 6.8.8.1-59.1	6.8.8.1-59.1	Mar 24, 2017	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
CVE-2017-5510	Hig	7.8	< 6.8.8.1-59.1	6.8.8.1-59.1	Mar 24, 2017	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVE-2017-5508	Med	5.5	< 6.8.8.1-59.1	6.8.8.1-59.1	Mar 24, 2017	Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file.
CVE-2017-5507	Hig	7.5	< 6.8.8.1-59.1	6.8.8.1-59.1	Mar 24, 2017	Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.

CVE-2017-8353MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8352MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8351MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8350MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8349MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8348MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8347MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadEXRImage function in exr.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8346MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8345MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8344MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadPCXImage function in pcx.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2017-8343MedApr 30, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file.
CVE-2016-7530MedApr 20, 2017
affected < 6.8.8.1-71.12.1fixed 6.8.8.1-71.12.1
The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write) via a crafted file.
CVE-2017-7943MedApr 18, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7942MedApr 18, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7941MedApr 18, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file.
CVE-2017-7606MedApr 9, 2017
affected < 6.8.8.1-70.1fixed 6.8.8.1-70.1
coders/rle.c in ImageMagick 7.0.5-4 has an "outside the range of representable values of type unsigned char" undefined behavior issue, which might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted image
CVE-2017-5511CriMar 24, 2017
affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
CVE-2017-5510HigMar 24, 2017
affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVE-2017-5508MedMar 24, 2017
affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file.
CVE-2017-5507HigMar 24, 2017
affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.

Page 10 of 12