Vulnerabilities > Imagemagick > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-07-01 | CVE-2019-13133 | Memory Leak vulnerability in multiple products ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadBMPImage in coders/bmp.c. | 4.3 |
| 2019-06-26 | CVE-2019-12979 | Improper Initialization vulnerability in multiple products ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c. | 6.8 |
| 2019-06-26 | CVE-2019-12978 | Improper Initialization vulnerability in Imagemagick 7.0.834 ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c. | 6.8 |
| 2019-06-26 | CVE-2019-12977 | Improper Initialization vulnerability in Imagemagick 7.0.834 ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c. | 6.8 |
| 2019-06-26 | CVE-2019-12976 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c. | 5.5 |
| 2019-06-26 | CVE-2019-12975 | Memory Leak vulnerability in multiple products ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c. | 5.5 |
| 2019-06-26 | CVE-2019-12974 | NULL Pointer Dereference vulnerability in Imagemagick 7.0.834 A NULL pointer dereference in the function ReadPANGOImage in coders/pango.c and the function ReadVIDImage in coders/vid.c in ImageMagick 7.0.8-34 allows remote attackers to cause a denial of service via a crafted image. | 4.3 |
| 2019-04-29 | CVE-2019-11598 | Out-of-bounds Read vulnerability in Imagemagick 7.0.840 In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. | 5.8 |
| 2019-04-29 | CVE-2019-11597 | Out-of-bounds Read vulnerability in Imagemagick 7.0.843 In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. | 5.8 |
| 2019-04-23 | CVE-2019-11472 | Divide By Zero vulnerability in Imagemagick 7.0.841 ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (divide-by-zero error) by crafting an XWD image file in which the header indicates neither LSB first nor MSB first. | 6.5 |