7.0.6

DATE	CVE	VULNERABILITY TITLE	RISK
2019-02-05	CVE-2019-7397	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c. network low complexity imagemagick graphicsmagick opensuse debian canonical CWE-401	5.0
2019-02-05	CVE-2019-7396	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. network low complexity imagemagick opensuse debian canonical CWE-401	5.0
2019-02-05	CVE-2019-7395	Memory Leak vulnerability in multiple products In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDChannel in coders/psd.c. network low complexity imagemagick opensuse debian canonical CWE-401	5.0
2018-12-26	CVE-2018-20467	Infinite Loop vulnerability in multiple products In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. network imagemagick opensuse debian canonical CWE-835	4.3
2018-09-09	CVE-2018-16750	Missing Release of Resource after Effective Lifetime vulnerability in multiple products In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found. network imagemagick canonical CWE-772	4.3
2018-09-09	CVE-2018-16749	NULL Pointer Dereference vulnerability in multiple products In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file. network imagemagick canonical debian CWE-476	4.3
2018-09-01	CVE-2018-16323	Information Exposure vulnerability in multiple products ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. network imagemagick canonical CWE-200	4.3
2018-01-30	CVE-2018-6405	Missing Release of Resource after Effective Lifetime vulnerability in multiple products In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. network imagemagick canonical CWE-772	4.3
2018-01-02	CVE-2017-1000445	NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service network imagemagick debian canonical CWE-476	4.3
2017-12-11	CVE-2017-17504	Out-of-bounds Read vulnerability in multiple products ImageMagick before 7.0.7-12 has a coders/png.c Magick_png_read_raw_profile heap-based buffer over-read via a crafted file, related to ReadOneMNGImage. network imagemagick canonical debian CWE-125	4.3