Vulnerabilities > Imagemagick > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2017-03-03 | CVE-2016-10070 | Out-of-bounds Read vulnerability in multiple products Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. | 5.5 |
| 2017-03-03 | CVE-2016-10066 | Classic Buffer Overflow vulnerability in Imagemagick Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a crafted file. | 5.5 |
| 2017-03-03 | CVE-2016-10061 | Unchecked Return Value vulnerability in Imagemagick The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (crash) via a crafted image file. | 6.5 |
| 2017-03-02 | CVE-2016-10071 | Out-of-bounds Read vulnerability in Imagemagick coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted mat file. | 5.5 |
| 2017-03-02 | CVE-2016-10069 | Improper Input Validation vulnerability in multiple products coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames. | 5.5 |
| 2017-03-02 | CVE-2016-10068 | Improper Input Validation vulnerability in multiple products The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. | 5.5 |
| 2017-03-02 | CVE-2016-10062 | 7PK - Errors vulnerability in Imagemagick The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote attackers to cause a denial of service (application crash) via a crafted file. | 5.5 |
| 2017-03-02 | CVE-2016-10060 | Unchecked Return Value vulnerability in Imagemagick The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (application crash) via a crafted file. | 6.5 |
| 2017-03-01 | CVE-2016-9559 | NULL Pointer Dereference vulnerability in multiple products coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted image. | 6.5 |
| 2017-02-27 | CVE-2015-8903 | Infinite Loop vulnerability in Imagemagick The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted VICAR file. | 6.5 |