Vulnerabilities > Imagemagick > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-12-08 CVE-2020-25667 Heap-based Buffer Overflow vulnerability in Imagemagick
TIFFGetProfiles() in /coders/tiff.c calls strstr() which causes a large out-of-bounds read when it searches for `"dc:format=\"image/dng\"` within `profile` due to improper string handling, when a crafted input file is provided to ImageMagick.
local
low complexity
imagemagick CWE-122
5.5
2020-12-08 CVE-2020-25665 Out-of-bounds Read vulnerability in multiple products
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be offset by 256.
local
low complexity
imagemagick debian CWE-125
5.5
2020-12-08 CVE-2020-25664 Heap-based Buffer Overflow vulnerability in multiple products
In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called.
local
low complexity
imagemagick fedoraproject CWE-122
6.1
2020-12-08 CVE-2020-25663 Use After Free vulnerability in Imagemagick
A call to ConformPixelInfo() in the SetImageAlphaChannel() routine of /MagickCore/channel.c caused a subsequent heap-use-after-free or heap-buffer-overflow READ when GetPixelRed() or GetPixelBlue() was called.
4.3
2020-12-04 CVE-2020-27770 Integer Overflow or Wraparound vulnerability in multiple products
Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability.
local
low complexity
imagemagick debian CWE-190
5.5
2020-12-03 CVE-2020-27762 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in coders/hdr.c.
local
low complexity
imagemagick debian CWE-190
5.5
2020-12-03 CVE-2020-27760 Divide By Zero vulnerability in multiple products
In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick.
local
low complexity
imagemagick debian CWE-369
5.5
2020-06-07 CVE-2020-13902 Out-of-bounds Read vulnerability in Imagemagick
ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decoding.
5.8
2020-03-10 CVE-2020-10251 Out-of-bounds Read vulnerability in Imagemagick 7.0.9
In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c.
4.3
2020-02-17 CVE-2014-1947 Out-of-bounds Write vulnerability in multiple products
Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick 6.5.4 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a large number of layers in a PSD image, involving the L%02ld string, a different vulnerability than CVE-2014-2030.
6.8