Show filters
27 Total Results
Displaying 11-20 of 27
Sort by:
Attacker Value
Unknown
CVE-2018-9135
Disclosure Date: March 30, 2018 (last updated November 26, 2024)
In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c.
0
Attacker Value
Unknown
CVE-2018-9133
Disclosure Date: March 30, 2018 (last updated November 26, 2024)
ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a hang (tens of minutes) with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file.
0
Attacker Value
Unknown
CVE-2018-8960
Disclosure Date: March 23, 2018 (last updated November 26, 2024)
The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-based buffer over-read.
0
Attacker Value
Unknown
CVE-2018-8804
Disclosure Date: March 20, 2018 (last updated November 26, 2024)
WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file.
0
Attacker Value
Unknown
CVE-2017-18209
Disclosure Date: March 01, 2018 (last updated November 26, 2024)
In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs because a memory allocation result is not checked, related to GetOpenCLCacheDirectory.
0
Attacker Value
Unknown
CVE-2017-18210
Disclosure Date: March 01, 2018 (last updated November 26, 2024)
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.
0
Attacker Value
Unknown
CVE-2017-18211
Disclosure Date: March 01, 2018 (last updated November 26, 2024)
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.
0
Attacker Value
Unknown
CVE-2018-7470
Disclosure Date: February 25, 2018 (last updated November 26, 2024)
An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service (segmentation violation) via a crafted file.
0
Attacker Value
Unknown
CVE-2018-7443
Disclosure Date: February 23, 2018 (last updated November 26, 2024)
The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-23 Q16 does not properly validate the amount of image data in a file, which allows remote attackers to cause a denial of service (memory allocation failure in the AcquireMagickMemory function in MagickCore/memory.c).
0
Attacker Value
Unknown
CVE-2018-6930
Disclosure Date: February 13, 2018 (last updated November 26, 2024)
A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file.
0
