rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Software Development Kit 12 SP5
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP5
Vulnerabilities (69)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2019-16710 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Sep 23, 2019 | ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c. | ||
| CVE-2019-16711 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Sep 23, 2019 | ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c. | ||
| CVE-2019-16712 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Sep 23, 2019 | ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image. | ||
| CVE-2019-16713 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Sep 23, 2019 | ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c. | ||
| CVE-2019-15139 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Aug 18, 2019 | The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a diffe | ||
| CVE-2019-15140 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Aug 18, 2019 | coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c. | ||
| CVE-2019-15141 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Aug 18, 2019 | WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, an | ||
| CVE-2019-14980 | — | < 6.8.8.1-71.131.1 | 6.8.8.1-71.131.1 | Aug 12, 2019 | In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file. | ||
| CVE-2017-11527 | Med | 6.5 | < 6.8.8.1-71.144.8 | 6.8.8.1-71.144.8 | Jul 23, 2017 | The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. |
- CVE-2019-16710Sep 23, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c.
- CVE-2019-16711Sep 23, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.
- CVE-2019-16712Sep 23, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image.
- CVE-2019-16713Sep 23, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c.
- CVE-2019-15139Aug 18, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (application crash resulting from an out-of-bounds Read) in ReadXWDImage in coders/xwd.c by crafting a corrupted XWD image file, a diffe
- CVE-2019-15140Aug 18, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact by crafting a Matlab image file that is mishandled in ReadImage in MagickCore/constitute.c.
- CVE-2019-15141Aug 18, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
WriteTIFFImage in coders/tiff.c in ImageMagick 7.0.8-43 Q16 allows attackers to cause a denial-of-service (application crash resulting from a heap-based buffer over-read) via a crafted TIFF image file, related to TIFFRewriteDirectory, TIFFWriteDirectory, TIFFWriteDirectorySec, an
- CVE-2019-14980Aug 12, 2019affected < 6.8.8.1-71.131.1fixed 6.8.8.1-71.131.1
In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file.
- affected < 6.8.8.1-71.144.8fixed 6.8.8.1-71.144.8
The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
Page 4 of 4