rpm package
suse/ImageMagick&distro=SUSE Linux Enterprise Workstation Extension 12 SP1
pkg:rpm/suse/ImageMagick&distro=SUSE%20Linux%20Enterprise%20Workstation%20Extension%2012%20SP1
Vulnerabilities (149)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2014-9834 | Hig | 7.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 22, 2017 | Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file. | |
| CVE-2014-9833 | Hig | 7.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 22, 2017 | Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file. | |
| CVE-2014-9832 | Hig | 7.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 22, 2017 | Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file. | |
| CVE-2014-9851 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash). | |
| CVE-2014-9850 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption). | |
| CVE-2014-9849 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The png coder in ImageMagick allows remote attackers to cause a denial of service (crash). | |
| CVE-2014-9848 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption). | |
| CVE-2014-9847 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact. | |
| CVE-2014-9846 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact. | |
| CVE-2014-9845 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file. | |
| CVE-2014-9844 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. | |
| CVE-2014-9843 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors. | |
| CVE-2014-9842 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. | |
| CVE-2014-9841 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 20, 2017 | The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions." | |
| CVE-2014-9854 | Hig | 7.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." | |
| CVE-2014-9853 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. | |
| CVE-2014-9852 | Cri | 9.8 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 17, 2017 | distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. | |
| CVE-2015-8898 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file. | |
| CVE-2015-8897 | Med | 5.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file. | |
| CVE-2015-8896 | Med | 6.5 | < 6.8.8.1-30.2 | 6.8.8.1-30.2 | Mar 15, 2017 | Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file. |
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image."
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
- affected < 6.8.8.1-30.2fixed 6.8.8.1-30.2
Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.
Page 5 of 8