Vulnerabilities > Imagemagick
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-09 | CVE-2021-20241 | A flaw was found in ImageMagick in coders/jp2.c. | 5.5 |
| 2021-02-23 | CVE-2020-27768 | Integer Overflow or Wraparound vulnerability in multiple products In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. | 3.3 |
| 2021-02-06 | CVE-2021-20176 | A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. | 5.5 |
| 2020-12-08 | CVE-2020-27758 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in coders/txt.c. | 3.3 |
| 2020-12-08 | CVE-2020-27757 | Integer Overflow or Wraparound vulnerability in multiple products A floating point math calculation in ScaleAnyToQuantum() of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. | 3.3 |
| 2020-12-08 | CVE-2020-27756 | Divide By Zero vulnerability in Imagemagick In ParseMetaGeometry() of MagickCore/geometry.c, image height and width calculations can lead to divide-by-zero conditions which also lead to undefined behavior. | 5.5 |
| 2020-12-08 | CVE-2020-27755 | Memory Leak vulnerability in Imagemagick in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the proper image depth size does not reset the size in the event there is an invalid size. | 4.3 |
| 2020-12-08 | CVE-2020-27754 | Integer Overflow or Wraparound vulnerability in multiple products In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. | 3.3 |
| 2020-12-08 | CVE-2020-27753 | Memory Leak vulnerability in Imagemagick There are several memory leaks in the MIFF coder in /coders/miff.c due to improper image depth values, which can be triggered by a specially crafted input file. | 4.3 |
| 2020-12-08 | CVE-2020-27752 | Heap-based Buffer Overflow vulnerability in Imagemagick A flaw was found in ImageMagick in MagickCore/quantum-private.h. | 7.1 |