Imagemagick

imagemagick

Vendor: Imagemagick • 739 CVEs

CVEs (739)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-8804 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Mar 20, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a craft...Show more WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file.Show less
CVE-2017-18211 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Mar 1, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.
CVE-2017-18210 1Imagemagick 1Imagemagick Nov 21, 2024 Mar 1, 2018 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.
CVE-2017-18209 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Mar 1, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory...Show more In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory.Show less
CVE-2018-7470 1Imagemagick 1Imagemagick Nov 21, 2024 Feb 25, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service (segmentation violation) via a crafted file.
CVE-2018-7443 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux Nov 21, 2024 Feb 23, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure...Show more The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory function in MagickCore/memory.c).Show less
CVE-2018-6930 1Imagemagick 1Imagemagick Nov 21, 2024 Feb 13, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously cr...Show more A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.Show less
CVE-2018-6876 2Imagemagick Libfpx Project 2Imagemagick Libfpx Nov 21, 2024 Feb 9, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The OLEProperty class in ole/oleprop.cpp in libfpx 1.3.1-10, as used in ImageMagick 7.0.7-22 Q16 and other products, allows remote attackers to cause a denial of service (stack-based buffer under-read) via a crafted bmp...Show more The OLEProperty class in ole/oleprop.cpp in libfpx 1.3.1-10, as used in ImageMagick 7.0.7-22 Q16 and other products, allows remote attackers to cause a denial of service (stack-based buffer under-read) via a crafted bmp image.Show less
CVE-2018-6405 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 30, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. Th...Show more In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service.Show less
CVE-2017-18029 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file.
CVE-2017-18028 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 12, 2018 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote attackers to cause a denial of service via a crafted file.
CVE-2017-18027 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file.
CVE-2018-5358 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 ImageMagick 7.0.7-22 Q16 has memory leaks in the EncodeImageAttributes function in coders/json.c, as demonstrated by the ReadPSDLayersInternal function in coders/psd.c.
CVE-2018-5357 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 12, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 ImageMagick 7.0.7-22 Q16 has memory leaks in the ReadDCMImage function in coders/dcm.c.
CVE-2018-5248 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux Nov 21, 2024 Jan 5, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixel_decode function.
CVE-2018-5247 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 5, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.
CVE-2018-5246 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 5, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c.
CVE-2017-18022 2Canonical Imagemagick 2Imagemagick Ubuntu Linux Nov 21, 2024 Jan 5, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.
CVE-2017-1000476 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux Nov 21, 2024 Jan 3, 2018 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows attackers to cause a denial of service.
CVE-2017-1000445 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux Nov 21, 2024 Jan 2, 2018 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service

Previous 1...151617...37 Next