Vulnerabilities > Imagemagick

DATE CVE VULNERABILITY TITLE RISK
2017-03-03 CVE-2016-10061 Unchecked Return Value vulnerability in Imagemagick
The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file.
network
low complexity
imagemagick CWE-252
6.5
2017-03-02 CVE-2016-10071 Out-of-bounds Read vulnerability in Imagemagick
coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file.
local
low complexity
imagemagick CWE-125
5.5
2017-03-02 CVE-2016-10069 Improper Input Validation vulnerability in multiple products
coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames.
local
low complexity
imagemagick opensuse-project CWE-20
5.5
2017-03-02 CVE-2016-10068 Improper Input Validation vulnerability in multiple products
The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file.
5.5
2017-03-02 CVE-2016-10067 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick
magick/memory.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via vectors involving "too many exceptions," which trigger a buffer overflow.
network
low complexity
imagemagick CWE-119
7.5
2017-03-02 CVE-2016-10064 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file.
local
low complexity
imagemagick opensuse CWE-119
7.8
2017-03-02 CVE-2016-10063 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick
Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file, related to extend validity.
local
low complexity
imagemagick CWE-119
7.8
2017-03-02 CVE-2016-10062 7PK - Errors vulnerability in Imagemagick
The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
local
low complexity
imagemagick CWE-388
5.5
2017-03-02 CVE-2016-10060 Unchecked Return Value vulnerability in Imagemagick
The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (application crash) via a crafted file.
network
low complexity
imagemagick CWE-252
6.5
2017-03-01 CVE-2016-9559 NULL Pointer Dereference vulnerability in multiple products
coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image.
network
low complexity
imagemagick debian CWE-476
6.5