Vulnerabilities > Imagemagick > Imagemagick > 7.0.8.35
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2019-12-24 | CVE-2019-19949 | Out-of-bounds Read vulnerability in multiple products In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magick_png_write_raw_profile and LocaleNCompare. | 9.1 |
2019-11-11 | CVE-2019-18853 | Uncontrolled Recursion vulnerability in Imagemagick ImageMagick before 7.0.9-0 allows remote attackers to cause a denial of service because XML_PARSE_HUGE is not properly restricted in coders/svg.c, related to SVG and libxml2. | 4.3 |
2019-10-14 | CVE-2019-17547 | Use After Free vulnerability in Imagemagick In ImageMagick before 7.0.8-62, TraceBezier in MagickCore/draw.c has a use-after-free. | 6.8 |
2019-10-14 | CVE-2019-17541 | Use After Free vulnerability in Imagemagick ImageMagick before 7.0.8-55 has a use-after-free in DestroyStringInfo in MagickCore/string.c because the error manager is mishandled in coders/jpeg.c. | 6.8 |
2019-10-14 | CVE-2019-17540 | Out-of-bounds Write vulnerability in multiple products ImageMagick before 7.0.8-54 has a heap-based buffer overflow in ReadPSInfo in coders/ps.c. | 8.8 |
2019-09-23 | CVE-2019-16710 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c. | 4.3 |
2019-09-23 | CVE-2019-16709 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage. | 4.3 |
2019-09-23 | CVE-2019-16708 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage. | 4.3 |
2019-08-12 | CVE-2019-14981 | Divide By Zero vulnerability in multiple products In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function. | 4.3 |
2019-08-12 | CVE-2019-14980 | Use After Free vulnerability in multiple products In ImageMagick 7.x before 7.0.8-42 and 6.x before 6.9.10-42, there is a use after free vulnerability in the UnmapBlob function that allows an attacker to cause a denial of service by sending a crafted file. | 6.5 |