Imagemagick

imagemagick

Vendor: Imagemagick • 767 CVEs

CVEs (767)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2017-11527 1Imagemagick 1Imagemagick May 13, 2026 Jul 23, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
CVE-2017-11526 1Imagemagick 1Imagemagick May 13, 2026 Jul 23, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a crafted file.
CVE-2017-11525 1Imagemagick 1Imagemagick May 13, 2026 Jul 23, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadCINImage function in coders/cin.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file.
CVE-2017-11524 1Imagemagick 1Imagemagick May 13, 2026 Jul 23, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted file.
CVE-2017-11523 1Imagemagick 1Imagemagick May 13, 2026 Jul 22, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop) via a crafted file, because the end-of-file condition...Show more The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop) via a crafted file, because the end-of-file condition is not considered.Show less
CVE-2017-11522 1Imagemagick 1Imagemagick May 13, 2026 Jul 22, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The WriteOnePNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file.
CVE-2017-11505 1Imagemagick 1Imagemagick May 13, 2026 Jul 21, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file.
CVE-2017-11478 1Imagemagick 1Imagemagick May 13, 2026 Jul 20, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed DJVU image.
CVE-2017-11450 2Debian Imagemagick 2Debian Linux Imagemagick May 13, 2026 Jul 19, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short.
CVE-2017-11449 1Imagemagick 1Imagemagick May 13, 2026 Jul 19, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified...Show more coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via an image received from stdin.Show less
CVE-2017-11448 1Imagemagick 1Imagemagick May 13, 2026 Jul 19, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The ReadJPEGImage function in coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file.
CVE-2017-11447 1Imagemagick 1Imagemagick May 13, 2026 Jul 19, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service.
CVE-2017-11446 1Imagemagick 1Imagemagick May 13, 2026 Jul 19, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadPESImage function in coders\pes.c in ImageMagick 7.0.6-1 has an infinite loop vulnerability that can cause CPU exhaustion via a crafted PES file.
CVE-2017-11360 1Imagemagick 1Imagemagick May 13, 2026 Jul 17, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge number_pixels value.
CVE-2017-11352 3Canonical DebianImagemagick 3Debian Linux ImagemagickUbuntu Linux May 13, 2026 Jul 17, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 In ImageMagick before 7.0.5-10, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c. NOTE: this vulnerability exists because of an incomplete fix for CVE-2017-9144.
CVE-2017-11310 1Imagemagick 1Imagemagick May 13, 2026 Jul 13, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files.
CVE-2017-11188 1Imagemagick 1Imagemagick May 13, 2026 Jul 12, 2017 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check.
CVE-2017-11170 1Imagemagick 1Imagemagick May 13, 2026 Jul 11, 2017 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via invalid colors data in the header of a TGA or VST file.
CVE-2017-11166 1Imagemagick 1Imagemagick May 13, 2026 Jul 10, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted length (number of color-map entries) field in the header of an XWD file.
CVE-2017-11141 1Imagemagick 1Imagemagick May 13, 2026 Jul 10, 2017 N/A· v4 6.5 MEDIUM· v3 7.1 HIGH· v2 The ReadMATImage function in coders\mat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a crafted MAT file, related to incorrect ordering of a SetImageExtent call.

Previous 1...252627...39 Next