CVE-2017-6498
- EPSS 1.32%
- Veröffentlicht 06.03.2017 02:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ImageMagick 6.9.7. Incorrect TGA files could trigger assertion failures, thus leading to DoS.
CVE-2017-6499
- EPSS 1.33%
- Veröffentlicht 06.03.2017 02:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in Magick++ in ImageMagick 6.9.7. A specially crafted file creating a nested exception could lead to a memory leak (thus, a DoS).
CVE-2017-6500
- EPSS 1.32%
- Veröffentlicht 06.03.2017 02:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ImageMagick 6.9.7. A specially crafted sun file triggers a heap-based buffer over-read.
CVE-2017-6501
- EPSS 1.09%
- Veröffentlicht 06.03.2017 02:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ImageMagick 6.9.7. A specially crafted xcf file could lead to a NULL pointer dereference.
CVE-2017-6502
- EPSS 0.89%
- Veröffentlicht 06.03.2017 02:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
An issue was discovered in ImageMagick 6.9.7. A specially crafted webp file could lead to a file-descriptor leak in libmagickcore (thus, a DoS).
CVE-2016-10070
- EPSS 2.14%
- Veröffentlicht 03.03.2017 18:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
CVE-2016-10061
- EPSS 2.86%
- Veröffentlicht 03.03.2017 17:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file.
CVE-2016-10065
- EPSS 1.86%
- Veröffentlicht 03.03.2017 17:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
CVE-2016-10066
- EPSS 1.67%
- Veröffentlicht 03.03.2017 17:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file.
CVE-2016-10060
- EPSS 2.31%
- Veröffentlicht 02.03.2017 21:59:00
- Zuletzt bearbeitet 13.05.2026 00:24:29
The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (application crash) via a crafted file.