Vulnerabilities > Imagemagick > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-10-05 | CVE-2017-15032 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c. | 9.8 |
| 2017-09-21 | CVE-2017-14626 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c. | 9.8 |
| 2017-09-21 | CVE-2017-14625 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c. | 9.8 |
| 2017-09-21 | CVE-2017-14624 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c. | 9.8 |
| 2017-09-18 | CVE-2017-14532 | NULL Pointer Dereference vulnerability in multiple products ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c. | 9.8 |
| 2017-09-04 | CVE-2017-14138 | Missing Release of Resource after Effective Lifetime vulnerability in Imagemagick 7.0.65 ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors. | 9.8 |
| 2017-08-23 | CVE-2017-13139 | Out-of-bounds Read vulnerability in multiple products In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG CLIP chunk. | 9.8 |
| 2017-03-30 | CVE-2014-9826 | 7PK - Errors vulnerability in Imagemagick ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files. | 9.8 |
| 2017-03-24 | CVE-2017-5511 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based buffer overflow. | 9.8 |
| 2017-03-24 | CVE-2016-10145 | Numeric Errors vulnerability in Imagemagick Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy. | 9.8 |