Imagemagick

Imagemagick

725 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2017-14343

Exploit
  • EPSS 0.41%
  • Veröffentlicht 12.09.2017 17:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in coders/xcf.c via a crafted xcf image file.

6.5

CVE-2017-14324

Exploit
  • EPSS 0.38%
  • Veröffentlicht 12.09.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to cause a denial of service via a crafted file.

7.1

CVE-2017-14325

Exploit
  • EPSS 0.72%
  • Veröffentlicht 12.09.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadMPCImage in coders/mpc.c) via a crafted file.

6.5

CVE-2017-14326

Exploit
  • EPSS 0.38%
  • Veröffentlicht 12.09.2017 08:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-14248

  • EPSS 0.28%
  • Veröffentlicht 11.09.2017 09:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A heap-based buffer over-read in SampleImage() in MagickCore/resize.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service via a crafted file.

6.5

CVE-2017-14249

  • EPSS 0.61%
  • Veröffentlicht 11.09.2017 09:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to division by zero in GetPixelCacheTileSize in MagickCore/cache.c, allowing remote attackers to cause a denial of service via a crafted file.

8.8

CVE-2017-14224

  • EPSS 1.8%
  • Veröffentlicht 09.09.2017 01:29:02
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service or code execution via a crafted file.

7.1

CVE-2017-14172

Exploit
  • EPSS 0.58%
  • Veröffentlicht 07.09.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "extent" field in the header but does not contain sufficient b...

6.5

CVE-2017-14173

Exploit
  • EPSS 1.4%
  • Veröffentlicht 07.09.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In the function ReadTXTImage() in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRange(depth)+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loo...

7.1

CVE-2017-14174

Exploit
  • EPSS 0.65%
  • Veröffentlicht 07.09.2017 06:29:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "length" field in the header but does not contain s...