VIR Vulnerability Intelligence Relay

Search

Found 128 results in 32ms · Match type: Filtered list

Severitycriticalhighmediumlowunknown
0
KEVHas exploit
Reset
CVE Severity CVSS Risk Flags OS Vendor Published Description
CVE-2017-17880 high 8.8 8.8 FIX debian debian imagemagick 9y ago In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBP_DECODER_ABI_VERSION check.
CVE-2017-17879 high 8.8 8.8 FIX debian debianubuntu ubuntu imagemagick 9y ago In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length calculation and caused by an off-by-one error.
CVE-2017-17499 critical 9.8 9.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a use-after-free in Magick::Image::read in Magick++/lib/Image.cpp.
CVE-2017-16546 high 8.8 8.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uni…
CVE-2017-15281 high 8.8 8.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to "…
CVE-2017-15033 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.
CVE-2017-15032 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.
CVE-2017-15017 high 8.8 8.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c.
CVE-2017-15016 high 8.8 8.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c.
CVE-2017-15015 high 8.8 8.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in PDFDelegateMessage in coders/pdf.c.
CVE-2017-14739 high 7.5 7.5 FIX debian debian imagemagick 9y ago The AcquireResampleFilterThreadSet function in magick/resample-private.h in ImageMagick 7.0.7-4 mishandles failed memory allocation, which allows remote attackers to cause a denial of service (NULL P…
CVE-2017-14682 high 8.8 8.8 FIX debian debian imagemagick 9y ago GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impa…
CVE-2017-14626 critical 9.8 9.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
CVE-2017-14625 critical 9.8 9.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
CVE-2017-14624 critical 9.8 9.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
CVE-2017-14607 high 8.1 8.1 FIX debian debianubuntu ubuntu imagemagick 9y ago In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c. An attacker could possibly exploit this flaw to disclose potentially sensitive memo…
CVE-2017-14532 critical 9.8 9.8 FIX debian debianubuntu ubuntu imagemagick 9y ago ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
CVE-2017-14224 high 8.8 8.8 FIX debian debian imagemagick 9y ago A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service or code execution via a crafted file.
CVE-2017-14138 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors.
CVE-2017-14137 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has an issue where memory allocation is excessive because it depends only on a length field in a header.
CVE-2017-13146 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memory leak in the ReadMATImage function in coders/mat.c.
CVE-2017-13143 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in coders/mat.c uses uninitialized data, which might allow remote attackers to obtain sensitive information from proces…
CVE-2017-13139 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk.
CVE-2017-12983 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c in ImageMagick 7.0.6-8 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified ot…
CVE-2017-12669 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage in coders/cals.c.
CVE-2017-12668 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.
CVE-2017-12667 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in coders\mat.c.
CVE-2017-12666 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImage in coders/inline.c.
CVE-2017-12665 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c.
CVE-2017-12664 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage in coders/palm.c.
CVE-2017-12663 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in coders/map.c.
CVE-2017-12662 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in coders/pdf.c.
CVE-2014-9831 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.
CVE-2014-9830 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
CVE-2014-9828 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.
CVE-2014-9827 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
CVE-2017-12644 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c.
CVE-2017-12642 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c.
CVE-2017-12641 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c.
CVE-2017-12640 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c.
CVE-2017-12587 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.
CVE-2017-12435 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service.
CVE-2017-12430 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service.
CVE-2017-12429 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service.
CVE-2017-12428 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service in CloneDrawInfo in draw.c.
CVE-2017-12418 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in MagickCore/constitute.c.
CVE-2016-7539 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
CVE-2017-11450 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short.
CVE-2017-11449 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attackers to cause a denial of service (application crash) or poss…
CVE-2017-11310 high 8.8 8.8 FIX debian debian imagemagick 9y ago The read_user_chunk_callback function in coders\png.c in ImageMagick 7.0.6-1 Q16 2017-06-21 (beta) has memory leak vulnerabilities via crafted PNG files.
CVE-2017-11188 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted DPX file, related to lack of an EOF check.
CVE-2017-11170 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via invalid colors data in the header of a TGA or VST file.
CVE-2017-10928 high 8.8 8.8 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.6-0, a heap-based buffer over-read in the GetNextToken function in token.c allows remote attackers to obtain sensitive information from process memory or possibly have unspecified …
CVE-2017-9098 high 7.5 7.5 FIX arch arch slesdebian debian imagemagickgraphicsmagick 9y ago ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated …
CVE-2017-7619 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago In ImageMagick 7.0.4-9, an infinite loop can occur because of a floating-point rounding error in some of the color algorithms. This affects ModulateHSL, ModulateHCL, ModulateHCLp, ModulateHSB, Modula…
CVE-2014-9826 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
CVE-2014-9825 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9824.
CVE-2014-9824 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerability than CVE-2014-9825.
CVE-2014-9823 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9819.
CVE-2014-9822 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.
CVE-2014-9821 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
CVE-2014-9820 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.
CVE-2014-9819 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.
CVE-2014-9817 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.
CVE-2014-9804 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago vision.c in ImageMagick allows remote attackers to cause a denial of service (infinite loop) via vectors related to "too many object."
CVE-2017-5511 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow.
CVE-2017-5510 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVE-2017-5509 high 7.8 7.8 FIX debian debian imagemagick 9y ago coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVE-2017-5507 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.
CVE-2017-5506 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVE-2016-10146 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
CVE-2016-10145 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
CVE-2016-10144 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
CVE-2016-10059 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Buffer overflow in coders/tiff.c in ImageMagick before 6.9.4-1 allows remote attackers to cause a denial of service (application crash) or have unspecified other impact via a crafted TIFF file.
CVE-2016-10057 high 7.8 7.8 FIX debian debian imagemagick 9y ago Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impa…
CVE-2016-10056 high 7.8 7.8 FIX debian debian imagemagick 9y ago Buffer overflow in the sixel_decode function in coders/sixel.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact …
CVE-2016-10055 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Buffer overflow in the WritePDBImage function in coders/pdb.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact v…
CVE-2016-10054 high 7.8 7.8 FIX debian debian imagemagick 9y ago Buffer overflow in the WriteMAPImage function in coders/map.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact v…
CVE-2016-10052 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Buffer overflow in the WriteProfile function in coders/jpeg.c in ImageMagick before 6.9.5-6 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact v…
CVE-2016-10051 high 7.8 7.8 FIX slesdebian debiansuse suse imagemagick 9y ago Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial of service (application crash) or have other unspecified imp…
CVE-2016-10050 high 7.8 7.8 FIX slesdebian debiansuse suse imagemagick 9y ago Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impac…
CVE-2016-10049 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact vi…
CVE-2016-10048 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecified vectors.
CVE-2014-9839 high 7.5 7.5 FIX slesdebian debian imagemagick 9y ago magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).
CVE-2014-9835 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap overflow in ImageMagick 6.8.9-9 via a crafted wpf file.
CVE-2014-9834 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file.
CVE-2014-9833 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file.
CVE-2014-9832 high 7.8 7.8 FIX slesdebian debian imagemagick 9y ago Heap overflow in ImageMagick 6.8.9-9 via a crafted pcx file.
CVE-2014-9851 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
CVE-2014-9850 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).
CVE-2014-9849 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).
CVE-2014-9848 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
CVE-2014-9847 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu opensuse_projectimagemagick 9y ago The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.
CVE-2014-9846 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu suseimagemagick 9y ago Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
CVE-2014-9843 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
CVE-2014-9842 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.
CVE-2014-9841 critical 9.8 9.8 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
CVE-2014-9854 high 7.5 7.5 FIX slesdebian debianubuntu ubuntu imagemagick 9y ago coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image."
CVE-2014-9852 critical 9.8 9.8 FIX slesdebian debiansuse suse imagemagick 9y ago distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors.
CVE-2016-5239 critical 9.8 9.8 FIX slesdebian debian imagemagick 9y ago The gnuplot delegate functionality in ImageMagick before 6.9.4-0 and GraphicsMagick allows remote attackers to execute arbitrary commands via unspecified vectors.