Vulnerabilities > Imagemagick > Imagemagick > 7.0.8.59
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-04 | CVE-2020-27770 | Integer Overflow or Wraparound vulnerability in multiple products Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability. | 5.5 |
| 2020-12-04 | CVE-2020-27767 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/quantum.h. | 3.3 |
| 2020-12-04 | CVE-2020-27766 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/statistic.c. | 7.8 |
| 2020-12-04 | CVE-2020-27765 | Divide By Zero vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/segment.c. | 3.3 |
| 2020-12-03 | CVE-2020-27763 | Divide By Zero vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/resize.c. | 3.3 |
| 2020-12-03 | CVE-2020-27762 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in coders/hdr.c. | 5.5 |
| 2020-12-03 | CVE-2020-27761 | Integer Overflow or Wraparound vulnerability in multiple products WritePALMImage() in /coders/palm.c used size_t casts in several areas of a calculation which could lead to values outside the range of representable type `unsigned long` undefined behavior when a crafted input file was processed by ImageMagick. | 3.3 |
| 2020-12-03 | CVE-2020-27760 | Divide By Zero vulnerability in multiple products In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick. | 5.5 |
| 2020-12-03 | CVE-2020-27759 | Integer Overflow or Wraparound vulnerability in multiple products In IntensityCompare() of /MagickCore/quantize.c, a double value was being casted to int and returned, which in some cases caused a value outside the range of type `int` to be returned. | 3.3 |
| 2019-11-11 | CVE-2019-18853 | Uncontrolled Recursion vulnerability in Imagemagick ImageMagick before 7.0.9-0 allows remote attackers to cause a denial of service because XML_PARSE_HUGE is not properly restricted in coders/svg.c, related to SVG and libxml2. | 4.3 |