rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Server for SAP Applications 12 SP1
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2012%20SP1
Vulnerabilities (162)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-9847 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact. | |
| CVE-2014-9846 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact. | |
| CVE-2014-9845 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file. | |
| CVE-2014-9844 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. | |
| CVE-2014-9843 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors. | |
| CVE-2014-9842 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | |
| CVE-2014-9841 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions." | |
| CVE-2014-9854 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." | |
| CVE-2014-9853 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. | |
| CVE-2014-9852 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. | |
| CVE-2015-8898 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file. | |
| CVE-2015-8897 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file. | |
| CVE-2015-8896 | Med | 6.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file. | |
| CVE-2015-8895 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow. | |
| CVE-2015-8894 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file. | |
| CVE-2016-10070 | Med | 5.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 3, 2017 | Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. | |
| CVE-2016-10065 | Hig | 7.8 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 3, 2017 | The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. | |
| CVE-2016-10061 | Med | 6.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 3, 2017 | The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file. | |
| CVE-2016-10071 | Med | 5.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 2, 2017 | coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. | |
| CVE-2016-10069 | Med | 5.5 | < 6.8.8.1-59.1 | 6.8.8.1-59.1 | Mar 2, 2017 | coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames. |
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image."
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
- affected < 6.8.8.1-59.1fixed 6.8.8.1-59.1
coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames.
Page 6 of 9