Imagemagick

Imagemagick

663 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2017-13146

  • EPSS 0.46%
  • Veröffentlicht 23.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memory leak in the ReadMATImage function in coders/mat.c.

6.5

CVE-2017-13131

  • EPSS 0.43%
  • Veröffentlicht 23.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cause a denial of service (memory consumption in NewLinkedList in MagickCore/linked-list.c) via a crafted file.

6.5

CVE-2017-13132

  • EPSS 0.25%
  • Veröffentlicht 23.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-8, the WritePDFImage function in coders/pdf.c operates on an incorrect data structure in the "dump uncompressed PseudoColor packets" step, which allows attackers to cause a denial of service (assertion failure in WriteBlobStream ...

7.1

CVE-2017-13133

  • EPSS 0.56%
  • Veröffentlicht 23.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of service (load_tile memory exhaustion) via a crafted file.

6.5

CVE-2017-13134

  • EPSS 1.35%
  • Veröffentlicht 23.08.2017 03:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-13058

  • EPSS 0.46%
  • Veröffentlicht 22.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-13059

  • EPSS 0.46%
  • Veröffentlicht 22.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file.

6.5

CVE-2017-13060

  • EPSS 0.46%
  • Veröffentlicht 22.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-5, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-13061

  • EPSS 0.47%
  • Veröffentlicht 22.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-5, a length-validation vulnerability was found in the function ReadPSDLayersInternal in coders/psd.c, which allows attackers to cause a denial of service (ReadPSDImage memory exhaustion) via a crafted file.

6.5

CVE-2017-13062

  • EPSS 0.46%
  • Veröffentlicht 22.08.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function formatIPTC in coders/meta.c, which allows attackers to cause a denial of service (WriteMETAImage memory consumption) via a crafted file.