Vulnerabilities > Imagemagick
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-29 | CVE-2022-1115 | Out-of-bounds Write vulnerability in Imagemagick A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. | 5.5 |
| 2022-08-26 | CVE-2021-3574 | Memory Leak vulnerability in multiple products A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks. | 3.3 |
| 2022-08-25 | CVE-2021-20224 | Integer Overflow or Wraparound vulnerability in Imagemagick An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. | 5.5 |
| 2022-08-10 | CVE-2022-2719 | Reachable Assertion vulnerability in multiple products In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. | 5.5 |
| 2022-06-16 | CVE-2022-32545 | Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. | 7.8 |
| 2022-06-16 | CVE-2022-32546 | Integer Overflow or Wraparound vulnerability in multiple products A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. | 7.8 |
| 2022-06-16 | CVE-2022-32547 | Incorrect Type Conversion or Cast vulnerability in multiple products In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. | 7.8 |
| 2022-05-08 | CVE-2022-28463 | Classic Buffer Overflow vulnerability in multiple products ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow. | 7.8 |
| 2022-04-29 | CVE-2022-1114 | Use After Free vulnerability in Imagemagick A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. | 7.1 |
| 2022-03-23 | CVE-2021-4219 | Improper Input Validation vulnerability in Imagemagick A flaw was found in ImageMagick. | 5.5 |