VYPR

rpm package

suse/ImageMagick&distro=SUSE Linux Enterprise Software Development Kit 11 SP4

pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2011%20SP4

Vulnerabilities (332)

  • CVE-2017-13141MedAug 23, 2017
    affected < 6.4.3.6-7.78.29.2fixed 6.4.3.6-7.78.29.2

    In ImageMagick before 6.9.9-4 and 7.x before 7.0.6-4, a crafted file could trigger a memory leak in ReadOnePNGImage in coders/png.c.

  • CVE-2017-13139CriAug 23, 2017
    affected < 6.4.3.6-7.78.8.1fixed 6.4.3.6-7.78.8.1

    In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.

  • CVE-2017-13134MedAug 23, 2017
    affected < 6.4.3.6-7.78.14.1fixed 6.4.3.6-7.78.14.1

    In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-13133MedAug 23, 2017
    affected < 6.4.3.6-7.78.8.1fixed 6.4.3.6-7.78.8.1

    In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.

  • CVE-2017-13131MedAug 23, 2017
    affected < 6.4.3.6-7.78.34.1fixed 6.4.3.6-7.78.34.1

    In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (memory consumption in NewLinkedList in MagickCore/linked-list.c) via a crafted file.

  • CVE-2017-13062MedAug 22, 2017
    affected < 6.4.3.6-7.78.17.1fixed 6.4.3.6-7.78.17.1

    In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function formatIPTC in coders/meta.c, which allows attackers to cause a denial of service (WriteMETAImage memory consumption) via a crafted file.

  • CVE-2017-13061MedAug 22, 2017
    affected < 6.4.3.6-7.78.17.1fixed 6.4.3.6-7.78.17.1

    In ImageMagick 7.0.6-5, a length-validation vulnerability was found in the function ReadPSDLayersInternal in coders/psd.c, which allows attackers to cause a denial of service (ReadPSDImage memory exhaustion) via a crafted file.

  • CVE-2017-13060MedAug 22, 2017
    affected < 6.4.3.6-7.78.22.1fixed 6.4.3.6-7.78.22.1

    In ImageMagick 7.0.6-5, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-13058MedAug 22, 2017
    affected < 6.4.3.6-7.78.34.1fixed 6.4.3.6-7.78.34.1

    In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-12983HigAug 21, 2017
    affected < 6.4.3.6-7.78.14.1fixed 6.4.3.6-7.78.14.1

    Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c in ImageMagick 7.0.6-8 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file.

  • CVE-2017-12935HigAug 18, 2017
    affected < 6.4.3.6-7.78.29.2fixed 6.4.3.6-7.78.29.2

    The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c.

  • CVE-2017-12676MedAug 7, 2017
    affected < 6.4.3.6-7.78.29.2fixed 6.4.3.6-7.78.29.2

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.

  • CVE-2017-12675MedAug 7, 2017
    affected < 6.4.3.6-7.78.22.1fixed 6.4.3.6-7.78.22.1

    In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service.

  • CVE-2017-12674MedAug 7, 2017
    affected < 6.4.3.6-7.78.34.1fixed 6.4.3.6-7.78.34.1

    In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service.

  • CVE-2017-12673MedAug 7, 2017
    affected < 6.4.3.6-7.78.29.2fixed 6.4.3.6-7.78.29.2

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service.

  • CVE-2017-12672MedAug 7, 2017
    affected < 6.4.3.6-7.78.22.1fixed 6.4.3.6-7.78.22.1

    In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service.

  • CVE-2017-12671MedAug 7, 2017
    affected < 6.4.3.6-7.78.29.2fixed 6.4.3.6-7.78.29.2

    In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service.

  • CVE-2017-12670MedAug 7, 2017
    affected < 6.4.3.6-7.78.22.1fixed 6.4.3.6-7.78.22.1

    In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in MagickCore/image.c, which allows attackers to cause a denial of service.

  • CVE-2017-12669HigAug 7, 2017
    affected < 6.4.3.6-7.78.14.1fixed 6.4.3.6-7.78.14.1

    ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage in coders/cals.c.

  • CVE-2017-12668HigAug 7, 2017
    affected < 6.4.3.6-7.78.34.1fixed 6.4.3.6-7.78.34.1

    ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.

Page 6 of 17