Graphicsmagick

graphicsmagick

Vendor: Graphicsmagick • 121 CVEs

CVEs (121)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-11638 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 26, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 GraphicsMagick 1.3.26 has a segmentation violation in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11642.
CVE-2017-11637 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 26, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 GraphicsMagick 1.3.26 has a NULL pointer dereference in the WritePCLImage() function in coders/pcl.c during writes of monochrome images.
CVE-2017-11636 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 26, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 GraphicsMagick 1.3.26 has a heap overflow in the WriteRGBImage() function in coders/rgb.c when processing multiple frames that have non-identical widths.
CVE-2017-11403 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 18, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 has an out-of-order CloseBlob call, resulting in a use-after-free via a crafted file.
CVE-2017-11140 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 10, 2017 N/A· v4 5.5 MEDIUM· v3 7.1 HIGH· v2 The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote attackers to cause a denial of service (resource consumption) via cra...Show more The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote attackers to cause a denial of service (resource consumption) via crafted JPEG files.Show less
CVE-2017-11139 2Debian Graphicsmagick 2Debian Linux Graphicsmagick May 13, 2026 Jul 10, 2017 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c.
CVE-2017-11102 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 7, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (application crash) during JNG reading via a zero-length color_image data structure.
CVE-2017-10800 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 3, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 When GraphicsMagick 1.3.25 processes a MATLAB image in coders/mat.c, it can lead to a denial of service (OOM) in ReadMATImage() if the size specified for a MAT Object is larger than the actual amount of data.
CVE-2017-10799 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 3, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 When GraphicsMagick 1.3.25 processes a DPX image (with metadata indicating a large width) in coders/dpx.c, a denial of service (OOM) can occur in ReadDPXImage().
CVE-2017-10794 1Graphicsmagick 1Graphicsmagick May 13, 2026 Jul 2, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 When GraphicsMagick 1.3.25 processes an RGB TIFF picture (with metadata indicating a single sample per pixel) in coders/tiff.c, a buffer overflow occurs, related to QuantumTransferMode.
CVE-2017-9098 3Debian GraphicsmagickImagemagick 3Debian Linux GraphicsmagickImagemagick May 13, 2026 May 19, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks aga...Show more ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server process that converts image data on behalf of multiple users. This is caused by a missing initialization step in the ReadRLEImage function in coders/rle.c.Show less
CVE-2017-6335 1Graphicsmagick 1Graphicsmagick May 13, 2026 Mar 14, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value i...Show more The QuantumTransferMode function in coders/tiff.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a small samples per pixel value in a CMYKA TIFF file.Show less
CVE-2016-9830 3Debian GraphicsmagickOpensuse 4Debian Linux GraphicsmagickLeap+1 more May 13, 2026 Mar 1, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image.
CVE-2016-5240 1Graphicsmagick 1Graphicsmagick May 13, 2026 Feb 27, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined S...Show more The DrawDashPolygon function in magick/render.c in GraphicsMagick before 1.3.24 and the SVG renderer in ImageMagick allow remote attackers to cause a denial of service (infinite loop) by converting a circularly defined SVG file.Show less
CVE-2016-8684 3Debian GraphicsmagickOpensuse 3Debian Linux GraphicsmagickOpensuse May 13, 2026 Feb 15, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for co...Show more The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."Show less
CVE-2016-8683 3Debian GraphicsmagickOpensuse 3Debian Linux GraphicsmagickOpensuse May 13, 2026 Feb 15, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corru...Show more The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."Show less
CVE-2016-8682 3Debian GraphicsmagickOpensuse 3Debian Linux GraphicsmagickOpensuse May 13, 2026 Feb 15, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SCT header.
CVE-2016-7800 3Debian GraphicsmagickOpensuse 4Debian Linux GraphicsmagickLeap+1 more May 13, 2026 Feb 6, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-b...Show more Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow.Show less
CVE-2016-7449 3Debian GraphicsmagickOpensuse 4Debian Linux GraphicsmagickLeap+1 more May 13, 2026 Feb 6, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string.
CVE-2016-7448 3Debian GraphicsmagickOpensuse 4Debian Linux GraphicsmagickLeap+1 more May 13, 2026 Feb 6, 2017 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service (CPU consumption or large memory allocations) via vectors involving the header information and the file size.

Previous 1 2 3 456 7 Next