Vulnerabilities > Imagemagick > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-08 | CVE-2020-25667 | Unspecified vulnerability in Imagemagick TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a crafted input file is provided to ImageMagick. | 5.5 |
| 2020-12-08 | CVE-2020-25665 | Out-of-bounds Read vulnerability in multiple products The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be offset by 256. | 5.5 |
| 2020-12-08 | CVE-2020-25664 | In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. | 6.1 |
| 2020-12-08 | CVE-2020-25663 | Unspecified vulnerability in Imagemagick A call to ConformPixelInfo() in the SetImageAlphaChannel() routine of /MagickCore/channel.c caused a subsequent heap-use-after-free or heap-buffer-overflow READ when GetPixelRed() or GetPixelBlue() was called. | 5.5 |
| 2020-12-04 | CVE-2020-27770 | Integer Overflow or Wraparound vulnerability in multiple products Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability. | 5.5 |
| 2020-12-03 | CVE-2020-27762 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in coders/hdr.c. | 5.5 |
| 2020-12-03 | CVE-2020-27760 | Divide By Zero vulnerability in multiple products In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick. | 5.5 |
| 2020-03-10 | CVE-2020-10251 | Out-of-bounds Read vulnerability in Imagemagick 7.0.9 In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. | 5.5 |
| 2020-02-06 | CVE-2016-7524 | Out-of-bounds Read vulnerability in Imagemagick coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. | 6.5 |
| 2020-02-06 | CVE-2016-7523 | Out-of-bounds Read vulnerability in Imagemagick coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. | 6.5 |