Vulnerabilities > Graphicsmagick

DATE CVE VULNERABILITY TITLE RISK
2020-05-06 CVE-2020-12672 Out-Of-Bounds Write vulnerability in Graphicsmagick
GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c.
network
low complexity
graphicsmagick CWE-787
5.0
2020-03-24 CVE-2020-10938 Integer Overflow OR Wraparound vulnerability in Graphicsmagick
GraphicsMagick before 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c.
network
low complexity
graphicsmagick CWE-190
7.5
2020-03-18 CVE-2019-12921 Information Exposure vulnerability in Graphicsmagick
In GraphicsMagick before 1.3.32, the text filename component allows remote attackers to read arbitrary files via a crafted image because of TranslateTextEx for SVG.
4.3
2019-12-24 CVE-2019-19953 Out-Of-Bounds Read vulnerability in Graphicsmagick 1.4
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c.
network
low complexity
graphicsmagick CWE-125
6.4
2019-12-24 CVE-2019-19951 Out-Of-Bounds Write vulnerability in Graphicsmagick 1.4
In GraphicsMagick 1.4 snapshot-20190423 Q8, there is a heap-based buffer overflow in the function ImportRLEPixels of coders/miff.c.
network
low complexity
graphicsmagick CWE-787
7.5
2019-12-24 CVE-2019-19950 USE After Free vulnerability in Graphicsmagick 1.4
In GraphicsMagick 1.4 snapshot-20190403 Q8, there is a use-after-free in ThrowException and ThrowLoggedException of magick/error.c.
network
low complexity
graphicsmagick CWE-416
7.5
2019-04-24 CVE-2019-11506 Out-Of-Bounds Write vulnerability in Graphicsmagick 1.3.30/1.3.31
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file.
6.8
2019-04-24 CVE-2019-11505 Out-Of-Bounds Write vulnerability in Graphicsmagick
In GraphicsMagick from version 1.3.8 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WritePDBImage of coders/pdb.c, which allows an attacker to cause a denial of service or possibly have unspecified other impact via a crafted image file.
6.8
2019-04-23 CVE-2019-11474 Incorrect Calculation vulnerability in Graphicsmagick 1.3.31
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (floating-point exception and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
4.3
2019-04-23 CVE-2019-11473 Out-Of-Bounds Read vulnerability in Graphicsmagick 1.3.31
coders/xwd.c in GraphicsMagick 1.3.31 allows attackers to cause a denial of service (out-of-bounds read and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
4.3