Search

Found 26 results in 31ms · Match type: Filtered list

CVE	Severity	CVSS	Risk	Flags	OS	Vendor	Published	Description
CVE-2017-17499	critical	9.8	9.8	FIX	debian ubuntu	imagemagick	9y ago	ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a use-after-free in Magick::Image::read in Magick++/lib/Image.cpp.
CVE-2017-15032	critical	9.8	9.8	FIX	sles debian ubuntu	imagemagick	9y ago	ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.
CVE-2017-14626	critical	9.8	9.8	FIX	debian ubuntu	imagemagick	9y ago	ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
CVE-2017-14625	critical	9.8	9.8	FIX	debian ubuntu	imagemagick	9y ago	ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
CVE-2017-14624	critical	9.8	9.8	FIX	debian ubuntu	imagemagick	9y ago	ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
CVE-2017-14532	critical	9.8	9.8	FIX	debian ubuntu	imagemagick	9y ago	ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
CVE-2017-14138	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.
CVE-2017-13139	critical	9.8	9.8	FIX	sles debian ubuntu	imagemagick	9y ago	In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
CVE-2014-9826	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
CVE-2017-5511	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
CVE-2016-10145	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
CVE-2016-10144	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
CVE-2014-9847	critical	9.8	9.8	FIX	sles debian ubuntu	opensuse_projectimagemagick	9y ago	The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
CVE-2014-9846	critical	9.8	9.8	FIX	sles debian ubuntu	suseimagemagick	9y ago	Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
CVE-2014-9843	critical	9.8	9.8	FIX	sles debian ubuntu	imagemagick	9y ago	The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
CVE-2014-9841	critical	9.8	9.8	FIX	sles debian ubuntu	imagemagick	9y ago	The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
CVE-2014-9852	critical	9.8	9.8	FIX	sles debian suse	imagemagick	9y ago	distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
CVE-2016-5239	critical	9.8	9.8	FIX	sles debian	imagemagick	9y ago	The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors.
CVE-2016-6520	critical	9.1	9.1	FIX	sles debian	imagemagick	10y ago	Buffer overflow in MagickCore/enhance.c in ImageMagick before 7.0.2-7 allows remote attackers to have unspecified impact via vectors related to pixel cache morphology.
CVE-2016-5841	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involvi…
CVE-2016-5691	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of validation of (1) pixel.red, (2) pixel.green, and (3) pixe…
CVE-2016-5690	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact via vectors involving the for statement in computing th…
CVE-2016-5689	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack of NULL pointer checks.
CVE-2016-5687	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecified impact via a crafted DDS file, which triggers an out-of-b…
CVE-2016-5118	critical	9.8	9.8	FIX	sles debian ubuntu	graphicsmagicksuseimagemagick	10y ago	The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a \| (pipe) character at the start of a filename.
CVE-2016-4564	critical	9.8	9.8	FIX	sles debian	imagemagick	10y ago	The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attempting to locate the next token, which allows remote attackers…