Imagemagick

imagemagick

740 CVEs • 3 products

Products (3)

Click to collapse

Toggle

CVEs (740)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2015-8897 1Imagemagick 1Imagemagick May 13, 2026 Mar 15, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file.
CVE-2015-8896 3Imagemagick OracleRedhat 8Enterprise Linux Desktop Enterprise Linux EusEnterprise Linux Server+5 more May 13, 2026 Mar 15, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file.
CVE-2015-8895 1Imagemagick 1Imagemagick May 13, 2026 Mar 15, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow.
CVE-2015-8894 1Imagemagick 1Imagemagick May 13, 2026 Mar 15, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file.
CVE-2016-10252 1Imagemagick 1Imagemagick May 13, 2026 Mar 14, 2017 N/A· v4 7.5 HIGH· v3 7.8 HIGH· v2 Memory leak in the IsOptionMember function in MagickCore/option.c in ImageMagick before 6.9.2-2, as used in ODR-PadEnc and other products, allows attackers to trigger memory consumption.
CVE-2017-6502 1Imagemagick 1Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in ImageMagick 6.9.7. A specially crafted webp file could lead to a file-descriptor leak in libmagickcore (thus, a DoS).
CVE-2017-6501 1Imagemagick 1Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in ImageMagick 6.9.7. A specially crafted xcf file could lead to a NULL pointer dereference.
CVE-2017-6500 2Debian Imagemagick 2Debian Linux Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in ImageMagick 6.9.7. A specially crafted sun file triggers a heap-based buffer over-read.
CVE-2017-6499 2Debian Imagemagick 2Debian Linux Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in Magick++ in ImageMagick 6.9.7. A specially crafted file creating a nested exception could lead to a memory leak (thus, a DoS).
CVE-2017-6498 2Debian Imagemagick 2Debian Linux Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 An issue was discovered in ImageMagick 6.9.7. Incorrect TGA files could trigger assertion failures, thus leading to DoS.
CVE-2017-6497 1Imagemagick 1Imagemagick May 13, 2026 Mar 6, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 An issue was discovered in ImageMagick 6.9.7. A specially crafted psd file could lead to a NULL pointer dereference (thus, a DoS).
CVE-2016-10070 2Imagemagick Opensuse 2Imagemagick Leap May 13, 2026 Mar 3, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
CVE-2016-10066 1Imagemagick 1Imagemagick May 13, 2026 Mar 3, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file.
CVE-2016-10065 2Imagemagick Opensuse 2Imagemagick Leap May 13, 2026 Mar 3, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
CVE-2016-10061 1Imagemagick 1Imagemagick May 13, 2026 Mar 3, 2017 N/A· v4 6.5 MEDIUM· v3 4.3 MEDIUM· v2 The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image f...Show more The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file.Show less
CVE-2016-10071 1Imagemagick 1Imagemagick May 13, 2026 Mar 2, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
CVE-2016-10069 2Imagemagick Opensuse Project 2Imagemagick Leap May 13, 2026 Mar 2, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames.
CVE-2016-10068 3Imagemagick OpensuseOpensuse Project 3Imagemagick LeapLeap May 13, 2026 Mar 2, 2017 N/A· v4 5.5 MEDIUM· v3 4.3 MEDIUM· v2 The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file.
CVE-2016-10067 1Imagemagick 1Imagemagick May 13, 2026 Mar 2, 2017 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 magick/memory.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via vectors involving "too many exceptions," which trigger a buffer overflow.
CVE-2016-10064 2Imagemagick Opensuse 2Imagemagick Leap May 13, 2026 Mar 2, 2017 N/A· v4 7.8 HIGH· v3 6.8 MEDIUM· v2 Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.

Previous 1...323334...37 Next