Imagemagick
by ImageMagick
Source repositories
CVEs (775)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2017-12665 | Hig | 0.57 | 8.8 | 0.01 | Aug 7, 2017 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c. | ||
| CVE-2017-12664 | Hig | 0.57 | 8.8 | 0.01 | Aug 7, 2017 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage in coders/palm.c. | ||
| CVE-2017-12663 | Hig | 0.57 | 8.8 | 0.01 | Aug 7, 2017 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in coders/map.c. | ||
| CVE-2017-12662 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in coders/pdf.c. | ||
| CVE-2014-9831 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file. | ||
| CVE-2014-9830 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file. | ||
| CVE-2014-9828 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file. | ||
| CVE-2014-9827 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file. | ||
| CVE-2017-12644 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c. | ||
| CVE-2017-12642 | Hig | 0.57 | 8.8 | 0.01 | Aug 7, 2017 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c. | ||
| CVE-2017-12641 | Hig | 0.57 | 8.8 | 0.01 | Aug 7, 2017 | ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. | ||
| CVE-2017-12640 | Hig | 0.57 | 8.8 | 0.02 | Aug 7, 2017 | ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c. | ||
| CVE-2017-12587 | Hig | 0.57 | 8.8 | 0.02 | Aug 6, 2017 | ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c. | ||
| CVE-2017-11450 | Hig | 0.57 | 8.8 | 0.02 | Jul 19, 2017 | coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short. | ||
| CVE-2017-11449 | Hig | 0.57 | 8.8 | 0.03 | Jul 19, 2017 | coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an image received from stdin. | ||
| CVE-2017-11310 | Hig | 0.57 | 8.8 | 0.01 | Jul 13, 2017 | The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files. | ||
| CVE-2017-11170 | Hig | 0.57 | 8.8 | 0.02 | Jul 11, 2017 | The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via invalid colors data in the header of a TGA or VST file. | ||
| CVE-2017-10928 | Hig | 0.57 | 8.8 | 0.04 | Jul 5, 2017 | In ImageMagick 7.0.6-0, a heap-based buffer over-read in the GetNextToken function in token.c allows remote attackers to obtain sensitive information from process memory or possibly have unspecified other impact via a crafted SVG document that is mishandled in the… | ||
| CVE-2016-10145 | Cri | 0.57 | 9.8 | 0.05 | Mar 24, 2017 | Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy. | ||
| CVE-2016-10144 | Cri | 0.57 | 9.8 | 0.05 | Mar 24, 2017 | coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check. |
- risk 0.57cvss 8.8epss 0.01
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c.
- risk 0.57cvss 8.8epss 0.01
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage in coders/palm.c.
- risk 0.57cvss 8.8epss 0.01
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in coders/map.c.
- risk 0.57cvss 8.8epss 0.02
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in coders/pdf.c.
- risk 0.57cvss 8.8epss 0.02
coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.
- risk 0.57cvss 8.8epss 0.02
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
- risk 0.57cvss 8.8epss 0.02
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.
- risk 0.57cvss 8.8epss 0.02
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
- risk 0.57cvss 8.8epss 0.02
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c.
- risk 0.57cvss 8.8epss 0.01
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c.
- risk 0.57cvss 8.8epss 0.01
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c.
- risk 0.57cvss 8.8epss 0.02
ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c.
- risk 0.57cvss 8.8epss 0.02
ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.
- risk 0.57cvss 8.8epss 0.02
coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short.
- risk 0.57cvss 8.8epss 0.03
coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an image received from stdin.
- risk 0.57cvss 8.8epss 0.01
The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files.
- risk 0.57cvss 8.8epss 0.02
The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via invalid colors data in the header of a TGA or VST file.
- risk 0.57cvss 8.8epss 0.04
In ImageMagick 7.0.6-0, a heap-based buffer over-read in the GetNextToken function in token.c allows remote attackers to obtain sensitive information from process memory or possibly have unspecified other impact via a crafted SVG document that is mishandled in the…
- risk 0.57cvss 9.8epss 0.05
Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
- risk 0.57cvss 9.8epss 0.05
coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
Page 4 of 39