rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Vulnerabilities (162)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-9816 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file. | |
| CVE-2014-9815 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file. | |
| CVE-2014-9814 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file. | |
| CVE-2014-9813 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file. | |
| CVE-2014-9812 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file. | |
| CVE-2014-9811 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file. | |
| CVE-2014-9810 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file. | |
| CVE-2014-9809 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image. | |
| CVE-2014-9808 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image. | |
| CVE-2014-9807 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors. | |
| CVE-2014-9806 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file. | |
| CVE-2014-9805 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 30, 2017 | ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file. | |
| CVE-2017-5511 | Cri | 9.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow. | |
| CVE-2017-5510 | Hig | 7.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write. | |
| CVE-2017-5508 | Med | 5.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file. | |
| CVE-2017-5507 | Hig | 7.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache. | |
| CVE-2017-5506 | Hig | 7.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file. | |
| CVE-2016-10146 | Hig | 7.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | |
| CVE-2016-10145 | Cri | 9.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy. | |
| CVE-2016-10144 | Cri | 9.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 24, 2017 | coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check. |
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed dpx file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
Page 4 of 9