VYPR

Vendor CVEs

ImageMagick

All CVEs

777 total · sorted by risk
  • CVE-2023-1289Mar 23, 2023
    risk 0.00cvss epss 0.01

    A vulnerability was discovered in ImageMagick where a specially created SVG file loads itself and causes a segmentation fault. This flaw allows a remote attacker to pass a specially crafted SVG file that leads to a segmentation fault, generating many trash files in "/tmp,"…

  • CVE-2022-3213Sep 19, 2022
    risk 0.00cvss epss 0.00

    A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

  • CVE-2022-1115Aug 29, 2022
    risk 0.00cvss epss 0.01

    A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.

  • CVE-2022-0284Aug 29, 2022
    risk 0.00cvss epss 0.01

    A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can…

  • CVE-2021-3574Aug 26, 2022
    risk 0.00cvss epss 0.00

    A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks.

  • CVE-2021-20224Aug 25, 2022
    risk 0.00cvss epss 0.00

    An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf…

  • CVE-2022-2719Aug 9, 2022
    risk 0.00cvss epss 0.00

    In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. This could potentially cause a denial of service. This was fixed in upstream ImageMagick version 7.1.0-30.

  • CVE-2022-32546Jun 16, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to…

  • CVE-2022-32545Jun 16, 2022
    risk 0.00cvss epss 0.01

    A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to…

  • CVE-2022-32547Jun 16, 2022
    risk 0.00cvss epss 0.01

    In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. Whenever crafted or untrusted input is processed by ImageMagick, this causes a negative impact…

  • CVE-2022-28463May 8, 2022
    risk 0.00cvss epss 0.02

    ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.

  • CVE-2022-1114Apr 29, 2022
    risk 0.00cvss epss 0.01

    A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a…

  • CVE-2021-4219Mar 23, 2022
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick. The vulnerability occurs due to improper use of open functions and leads to a denial of service. This flaw allows an attacker to crash the system.

  • CVE-2021-3610Feb 24, 2022
    risk 0.00cvss epss 0.03

    A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.

  • CVE-2021-3596Feb 24, 2022
    risk 0.00cvss epss 0.02

    A NULL pointer dereference flaw was found in ImageMagick in versions prior to 7.0.10-31 in ReadSVGImage() in coders/svg.c. This issue is due to not checking the return value from libxml2's xmlCreatePushParserCtxt() and uses the value directly, which leads to a crash and…

  • CVE-2021-3962Nov 19, 2021
    risk 0.00cvss epss 0.06

    A flaw was found in ImageMagick where it did not properly sanitize certain input before using it to invoke convert processes. This flaw allows an attacker to create a specially crafted image that leads to a use-after-free vulnerability when processed by ImageMagick. The highest…

  • CVE-2021-39212Sep 13, 2021
    risk 0.00cvss epss 0.00

    ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribute in both open and proprietary applications. In affected versions and in certain cases, Postscript files could be read and written when…

  • CVE-2020-27769May 14, 2021
    risk 0.00cvss epss 0.01

    In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c.

  • CVE-2021-20311May 11, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker processed by an application using ImageMagick. The…

  • CVE-2021-20310May 11, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The…

  • CVE-2021-20309May 11, 2021
    risk 0.00cvss epss 0.02

    A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image file submitted to an application using ImageMagick. The highest threat from this…

  • CVE-2021-20313May 11, 2021
    risk 0.00cvss epss 0.02

    A flaw was found in ImageMagick in versions before 7.0.11. A potential cipher leak when the calculate signatures in TransformSignature is possible. The highest threat from this vulnerability is to data confidentiality.

  • CVE-2021-20312May 11, 2021
    risk 0.00cvss epss 0.02

    A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest…

  • CVE-2020-27829Mar 26, 2021
    risk 0.00cvss epss 0.01

    A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.

  • CVE-2021-20246Mar 9, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/resample.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20241Mar 9, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20244Mar 9, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20243Mar 9, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/resize.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • CVE-2021-20245Mar 9, 2021
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

  • CVE-2020-27768Feb 23, 2021
    risk 0.00cvss epss 0.01

    In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0.

  • CVE-2021-20176Feb 5, 2021
    risk 0.00cvss epss 0.01

    A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. This flaw allows an attacker who submits a crafted file that is processed by ImageMagick to trigger undefined behavior through a division by zero. The highest threat from this vulnerability is to…

  • CVE-2020-27755Dec 8, 2020
    risk 0.00cvss epss 0.01

    in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the proper image depth size does not reset the size in the event there is an invalid size. The patch resets the depth to a proper size before…

  • CVE-2020-27753Dec 8, 2020
    risk 0.00cvss epss 0.01

    There are several memory leaks in the MIFF coder in /coders/miff.c due to improper image depth values, which can be triggered by a specially crafted input file. These leaks could potentially lead to an impact to application availability or cause a denial of service. It was…

  • CVE-2020-27752Dec 8, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/quantum-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger a heap buffer overflow. This would most likely lead to an impact to application availability, but could potentially lead to an…

  • CVE-2020-25667Dec 8, 2020
    risk 0.00cvss epss 0.01

    TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a crafted input file is provided to ImageMagick. The patch uses a StringInfo type…

  • CVE-2020-25664Dec 8, 2020
    risk 0.00cvss epss 0.01

    In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An…

  • CVE-2020-25663Dec 8, 2020
    risk 0.00cvss epss 0.01

    A call to ConformPixelInfo() in the SetImageAlphaChannel() routine of /MagickCore/channel.c caused a subsequent heap-use-after-free or heap-buffer-overflow READ when GetPixelRed() or GetPixelBlue() was called. This could occur if an attacker is able to submit a malicious image…

  • CVE-2020-25666Dec 8, 2020
    risk 0.00cvss epss 0.01

    There are 4 places in HistogramCompare() in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. This occurs in the rgb values and `count` value for a color. The patch uses casts to `ssize_t` type for these calculations, instead of `int`.…

  • CVE-2020-27756Dec 8, 2020
    risk 0.00cvss epss 0.01

    In ParseMetaGeometry() of MagickCore/geometry.c, image height and width calculations can lead to divide-by-zero conditions which also lead to undefined behavior. This flaw can be triggered by a crafted input file processed by ImageMagick and could impact application…

  • CVE-2020-27758Dec 8, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type `unsigned long long`. This would most likely lead to an impact to application…

  • CVE-2020-25675Dec 8, 2020
    risk 0.00cvss epss 0.01

    In the CropImage() and CropImageToTiles() routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. Such…

  • CVE-2020-27751Dec 8, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/quantum-export.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type `unsigned long long` as well as a shift exponent that is too…

  • CVE-2020-25676Dec 8, 2020
    risk 0.00cvss epss 0.01

    In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), InterpolatePixelChannels(), and InterpolatePixelInfo(), which are all functions in /MagickCore/pixel.c, there were multiple unconstrained pixel offset calculations which were being used with the floor() function.…

  • CVE-2020-25674Dec 8, 2020
    risk 0.00cvss epss 0.01

    WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible for the colormap to have less than 256 valid values but the loop condition will…

  • CVE-2020-27754Dec 8, 2020
    risk 0.00cvss epss 0.01

    In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function,…

  • CVE-2020-27750Dec 8, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type `unsigned char` and math division…

  • CVE-2020-27757Dec 8, 2020
    risk 0.00cvss epss 0.01

    A floating point math calculation in ScaleAnyToQuantum() of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is…

  • CVE-2020-25665Dec 8, 2020
    risk 0.00cvss epss 0.01

    The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytes_per_row in the call to…

  • CVE-2020-27776Dec 4, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/statistic.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long. This would most likely lead to an impact to…

  • CVE-2020-27775Dec 4, 2020
    risk 0.00cvss epss 0.01

    A flaw was found in ImageMagick in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char. This would most likely lead to an impact to…

Page 13 of 16