VYPR

Vendor CVEs

ImageMagick

All CVEs

783 total · sorted by risk
  • CVE-2017-11538MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteOnePNGImage() function in coders/png.c.

  • CVE-2017-11537MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Floating Point Exception (FPE) in the WritePALMImage() function in coders/palm.c, related to an incorrect bits-per-pixel calculation.

  • CVE-2017-11536MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.01

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteJP2Image() function in coders/jp2.c.

  • CVE-2017-11535MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c.

  • CVE-2017-11534MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.01

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.

  • CVE-2017-11533MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function in coders/uil.c.

  • CVE-2017-11532MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.01

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteMPCImage() function in coders/mpc.c.

  • CVE-2017-11531MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage() function in coders/histogram.c.

  • CVE-2017-11530MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

  • CVE-2017-11529MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.01

    The ReadMATImage function in coders/mat.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-11528MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-11527MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.

  • CVE-2017-11526MedJul 23, 2017
    risk 0.42cvss 6.5epss 0.03

    The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file.

  • CVE-2017-11523MedJul 22, 2017
    risk 0.42cvss 6.5epss 0.03

    The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop) via a crafted file, because the end-of-file condition is not considered.

  • CVE-2017-11522MedJul 22, 2017
    risk 0.42cvss 6.5epss 0.02

    The WriteOnePNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.

  • CVE-2017-11505MedJul 21, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file.

  • CVE-2017-11478MedJul 20, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed DJVU image.

  • CVE-2017-11448MedJul 19, 2017
    risk 0.42cvss 6.5epss 0.03

    The ReadJPEGImage function in coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file.

  • CVE-2017-11447MedJul 19, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service.

  • CVE-2017-11446MedJul 19, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file.

  • CVE-2017-11360MedJul 17, 2017
    risk 0.42cvss 6.5epss 0.01

    The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge number_pixels value.

  • CVE-2017-11352MedJul 17, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144.

  • CVE-2017-11166MedJul 10, 2017
    risk 0.42cvss 6.5epss 0.01

    The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.

  • CVE-2017-11141MedJul 10, 2017
    risk 0.42cvss 6.5epss 0.02

    The ReadMATImage function in coders\mat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageExtent call.

  • CVE-2017-9501MedJun 7, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-9500MedJun 7, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the function ResetImageProfileIterator, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-9499MedJun 7, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function SetPixelChannelAttributes, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-9440MedJun 5, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPSDChannel in coders/psd.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-9439MedJun 5, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service via a crafted file.

  • CVE-2017-9409MedJun 2, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-9407MedJun 2, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-9405MedJun 2, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-9262MedMay 29, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-9261MedMay 29, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.5-6 Q16, the ReadMNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-9144MedMay 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c.

  • CVE-2017-9143MedMay 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadARTImage function in coders/art.c allows attackers to cause a denial of service (memory leak) via a crafted .art file.

  • CVE-2017-9142MedMay 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of missing checks in the ReadOneJNGImage function in coders/png.c.

  • CVE-2017-9141MedMay 22, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profile.c because of missing checks in the ReadDDSImage function in coders/dds.c.

  • CVE-2017-8830MedMay 8, 2017
    risk 0.42cvss 6.5epss 0.01

    In ImageMagick 7.0.5-6, the ReadBMPImage function in bmp.c:1379 allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8765MedMay 4, 2017
    risk 0.42cvss 6.5epss 0.02

    The function named ReadICONImage in coders\icon.c in ImageMagick 7.0.5-5 has a memory leak vulnerability which can cause memory exhaustion via a crafted ICON file.

  • CVE-2017-8357MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadEPTImage function in ept.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8356MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8355MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8354MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8353MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8352MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8351MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8350MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8349MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file.

  • CVE-2017-8348MedApr 30, 2017
    risk 0.42cvss 6.5epss 0.02

    In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file.

Page 7 of 16