Imagemagick

Imagemagick

672 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-18253

  • EPSS 0.38%
  • Veröffentlicht 27.03.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:41

An issue was discovered in ImageMagick 7.0.7. A NULL pointer dereference vulnerability was found in the function LoadOpenCLDevices in MagickCore/opencl.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-18254

  • EPSS 0.36%
  • Veröffentlicht 27.03.2018 03:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:41

An issue was discovered in ImageMagick 7.0.7. A memory leak vulnerability was found in the function WriteGIFImage in coders/gif.c, which allow remote attackers to cause a denial of service via a crafted file.

8.8

CVE-2018-8960

Exploit
  • EPSS 0.38%
  • Veröffentlicht 23.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:41

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-based buffer over-read.

8.8

CVE-2018-8804

  • EPSS 0.46%
  • Veröffentlicht 20.03.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 04:14:21

WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file.

8.8

CVE-2017-18209

  • EPSS 0.56%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory.

9.8

CVE-2017-18210

  • EPSS 0.32%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.

9.8

CVE-2017-18211

  • EPSS 0.56%
  • Veröffentlicht 01.03.2018 21:29:00
  • Zuletzt bearbeitet 21.11.2024 03:19:34

In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.

6.5

CVE-2018-7470

Exploit
  • EPSS 0.25%
  • Veröffentlicht 25.02.2018 07:29:00
  • Zuletzt bearbeitet 21.11.2024 04:12:11

An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service (segmentation violation) via a crafted file.

6.5

CVE-2018-7443

Exploit
  • EPSS 0.44%
  • Veröffentlicht 23.02.2018 22:29:01
  • Zuletzt bearbeitet 21.11.2024 04:12:08

The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory fu...

6.5

CVE-2018-6930

  • EPSS 0.57%
  • Veröffentlicht 13.02.2018 05:29:00
  • Zuletzt bearbeitet 21.11.2024 04:11:26

A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.