Vulnerabilities > Imagemagick

DATE CVE VULNERABILITY TITLE RISK
2017-08-22 CVE-2017-13059 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.66
In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file.
network
low complexity
imagemagick CWE-772
6.5
2017-08-22 CVE-2017-13058 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.66
In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allows attackers to cause a denial of service via a crafted file.
network
low complexity
imagemagick CWE-772
6.5
2017-08-21 CVE-2017-12983 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick 7.0.68
Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c in ImageMagick 7.0.6-8 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file.
network
low complexity
imagemagick CWE-119
8.8
2017-08-07 CVE-2017-12676 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-772
6.5
2017-08-07 CVE-2017-12675 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-772
6.5
2017-08-07 CVE-2017-12674 Excessive Iteration vulnerability in Imagemagick 7.0.62
In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-834
6.5
2017-08-07 CVE-2017-12673 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-772
6.5
2017-08-07 CVE-2017-12672 Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-772
6.5
2017-08-07 CVE-2017-12671 Use After Free vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-416
6.5
2017-08-07 CVE-2017-12670 Reachable Assertion vulnerability in Imagemagick 7.0.63
In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in MagickCore/image.c, which allows attackers to cause a denial of service.
network
low complexity
imagemagick CWE-617
6.5