Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Debian_linux
(Debian)Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2018-12-26 | CVE-2018-20467 | In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | 6.5 | ||
2017-08-30 | CVE-2017-13768 | Null Pointer Dereference in the IdentifyImage function in MagickCore/identify.c in ImageMagick through 7.0.6-10 allows an attacker to perform denial of service by sending a crafted image file. | Ubuntu_linux, Debian_linux, Imagemagick | 6.5 | ||
2018-09-09 | CVE-2018-16749 | In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service (WriteBlob assertion failure and application exit) via a crafted file. | Ubuntu_linux, Debian_linux, Imagemagick | 6.5 | ||
2019-03-07 | CVE-2019-7175 | In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | 7.5 | ||
2019-11-06 | CVE-2010-2471 | Drupal versions 5.x and 6.x has open redirection | Debian_linux, Drupal | 6.1 | ||
2019-07-01 | CVE-2019-13137 | ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadPSImage in coders/ps.c. | Ubuntu_linux, Debian_linux, Imagemagick | 6.5 | ||
2017-08-28 | CVE-2017-12877 | Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file. | Ubuntu_linux, Debian_linux, Imagemagick | 6.5 | ||
2019-02-05 | CVE-2019-7396 | In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | 7.5 | ||
2019-02-05 | CVE-2019-7395 | In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDChannel in coders/psd.c. | Ubuntu_linux, Debian_linux, Imagemagick, Leap | 7.5 | ||
2017-05-19 | CVE-2017-9098 | ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server process that converts image data on behalf of multiple users. This is caused by a missing initialization step in the ReadRLEImage function in coders/rle.c. | Debian_linux, Graphicsmagick, Imagemagick | 7.5 |