13.2

DATE	CVE	VULNERABILITY TITLE	RISK
2017-03-20	CVE-2014-9842	Resource Exhaustion vulnerability in multiple products Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. network low complexity opensuse opensuse-project canonical imagemagick CWE-400	5.0
2017-03-20	CVE-2014-9841	7PK - Errors vulnerability in multiple products The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions." network low complexity opensuse opensuse-project canonical imagemagick CWE-388	7.5
2017-03-17	CVE-2014-9854	Resource Management Errors vulnerability in multiple products coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identification of image." network low complexity imagemagick opensuse suse canonical CWE-399	5.0
2017-03-17	CVE-2014-9853	Resource Management Errors vulnerability in multiple products Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file. network imagemagick suse novell opensuse opensuse-project canonical CWE-399	4.3
2017-03-17	CVE-2014-9852	Improper Control of Dynamically-Managed Code Resources vulnerability in multiple products distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact via unspecified vectors. network low complexity imagemagick opensuse suse CWE-913	7.5
2017-03-03	CVE-2016-7972	Resource Management Errors vulnerability in multiple products The check_allocations function in libass/ass_shaper.c in libass before 0.13.4 allows remote attackers to cause a denial of service (memory allocation failure) via unspecified vectors. network low complexity opensuse fedoraproject libass-project CWE-399	7.5
2017-03-03	CVE-2016-7969	Out-of-bounds Read vulnerability in multiple products The wrap_lines_smart function in ass_render.c in libass before 0.13.4 allows remote attackers to cause a denial of service (out-of-bounds read) via unspecified vectors, related to "0/3 line wrapping equalization." network low complexity opensuse fedoraproject libass-project CWE-125	7.5
2017-03-01	CVE-2016-9830	Improper Input Validation vulnerability in multiple products The MagickRealloc function in memory.c in Graphicsmagick 1.3.25 allows remote attackers to cause a denial of service (crash) via large dimensions in a jpeg image. network graphicsmagick debian opensuse CWE-20	4.3
2017-02-15	CVE-2016-8677	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Imagemagick The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. network imagemagick opensuse debian CWE-119	6.8
2017-02-15	CVE-2016-8866	Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. network imagemagick opensuse CWE-119	6.8