Vulnerabilities > Imagemagick > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-01 | CVE-2019-13133 | Memory Leak vulnerability in multiple products ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadBMPImage in coders/bmp.c. | 5.5 |
| 2019-06-26 | CVE-2019-12976 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c. | 5.5 |
| 2019-06-26 | CVE-2019-12975 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c. | 5.5 |
| 2019-06-26 | CVE-2019-12974 | NULL Pointer Dereference vulnerability in Imagemagick 7.0.834 A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image. | 5.5 |
| 2019-04-23 | CVE-2019-11472 | Divide By Zero vulnerability in Imagemagick 7.0.841 ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (divide-by-zero error) by crafting an XWD image file in which the header indicates neither LSB first nor MSB first. | 6.5 |
| 2019-04-23 | CVE-2019-11470 | Resource Exhaustion vulnerability in Imagemagick 7.0.826 The cineon parsing component in ImageMagick 7.0.8-26 Q16 allows attackers to cause a denial-of-service (uncontrolled resource consumption) by crafting a Cineon image with an incorrect claimed image size. | 6.5 |
| 2019-04-02 | CVE-2019-10714 | Out-of-bounds Read vulnerability in Imagemagick LocaleLowercase in MagickCore/locale.c in ImageMagick before 7.0.8-32 allows out-of-bounds access, leading to a SIGSEGV. | 6.5 |
| 2019-03-30 | CVE-2019-10649 | Memory Leak vulnerability in multiple products In ImageMagick 7.0.8-36 Q16, there is a memory leak in the function SVGKeyValuePairs of coders/svg.c, which allows an attacker to cause a denial of service via a crafted image file. | 5.5 |
| 2018-12-26 | CVE-2018-20467 | Infinite Loop vulnerability in multiple products In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. | 6.5 |
| 2018-10-21 | CVE-2018-18544 | Missing Release of Resource after Effective Lifetime vulnerability in multiple products There is a memory leak in the function WriteMSLImage of coders/msl.c in ImageMagick 7.0.8-13 Q16, and the function ProcessMSLScript of coders/msl.c in GraphicsMagick before 1.3.31. | 6.5 |