Imagemagick

Imagemagick

663 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-18252

  • EPSS 0.14%
  • Veröffentlicht 27.03.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:41

An issue was discovered in ImageMagick 7.0.7. The MogrifyImageList function in MagickWand/mogrify.c allows attackers to cause a denial of service (assertion failure and application exit in ReplaceImageInList) via a crafted file.

6.5

CVE-2017-18253

  • EPSS 0.38%
  • Veröffentlicht 27.03.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:41

An issue was discovered in ImageMagick 7.0.7. A NULL pointer dereference vulnerability was found in the function LoadOpenCLDevices in MagickCore/opencl.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-18254

  • EPSS 0.34%
  • Veröffentlicht 27.03.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:41

An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file.

8.8

CVE-2018-8960

Exploit
  • EPSS 0.35%
  • Veröffentlicht 23.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:41

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-based buffer over-read.

8.8

CVE-2018-8804

  • EPSS 0.39%
  • Veröffentlicht 20.03.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:21

WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file.

8.8

CVE-2017-18209

  • EPSS 0.37%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory.

9.8

CVE-2017-18210

  • EPSS 0.32%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.

9.8

CVE-2017-18211

  • EPSS 0.37%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.

6.5

CVE-2018-7470

Exploit
  • EPSS 0.15%
  • Veröffentlicht 25.02.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:11

An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service (segmentation violation) via a crafted file.

6.5

CVE-2018-7443

Exploit
  • EPSS 0.53%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:08

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory fu...