Vulnerabilities > Imagemagick
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-05-09 | CVE-2017-12806 | Resource Exhaustion vulnerability in Imagemagick 7.0.66 In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of service. | 7.5 |
| 2019-05-09 | CVE-2017-12805 | Resource Exhaustion vulnerability in Imagemagick 7.0.66 In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows attackers to cause a denial of service. | 7.5 |
| 2019-04-30 | CVE-2019-10131 | Off-by-one Error vulnerability in multiple products An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. | 7.1 |
| 2019-04-29 | CVE-2019-11598 | Out-of-bounds Read vulnerability in Imagemagick 7.0.840 In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. | 8.1 |
| 2019-04-29 | CVE-2019-11597 | Out-of-bounds Read vulnerability in Imagemagick 7.0.843 In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. | 8.1 |
| 2019-04-23 | CVE-2019-11472 | Divide By Zero vulnerability in Imagemagick 7.0.841 ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (divide-by-zero error) by crafting an XWD image file in which the header indicates neither LSB first nor MSB first. | 6.5 |
| 2019-04-23 | CVE-2019-11470 | Resource Exhaustion vulnerability in Imagemagick 7.0.826 The cineon parsing component in ImageMagick 7.0.8-26 Q16 allows attackers to cause a denial-of-service (uncontrolled resource consumption) by crafting a Cineon image with an incorrect claimed image size. | 6.5 |
| 2019-04-02 | CVE-2019-10714 | Out-of-bounds Read vulnerability in Imagemagick LocaleLowercase in MagickCore/locale.c in ImageMagick before 7.0.8-32 allows out-of-bounds access, leading to a SIGSEGV. | 6.5 |
| 2019-03-30 | CVE-2019-10650 | Out-of-bounds Read vulnerability in multiple products In ImageMagick 7.0.8-36 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or information disclosure via a crafted image file. | 8.1 |
| 2019-03-30 | CVE-2019-10649 | Memory Leak vulnerability in multiple products In ImageMagick 7.0.8-36 Q16, there is a memory leak in the function SVGKeyValuePairs of coders/svg.c, which allows an attacker to cause a denial of service via a crafted image file. | 5.5 |