79 matches found
CVE-2017-16547
The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service negative strncpy and application crash or possibly have unspecified other impact via a...
CVE-2017-16547
CVE-2017-16547 affects GraphicsMagick 1.3.26, where DrawImage in magick/render.c fails to correctly handle push/pop keywords, enabling denial of service (negative strncpy) or other impact via a crafted file. Connected advisories confirm this CVE is tracked across Debian and Ubuntu graphicsmagick ...
CVE-2017-16547
The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote attackers to cause a denial of service negative strncpy and application crash or possibly have unspecified other impact via a...
GraphicsMagick Denial of Service Vulnerability (CNVD-2017-33283)
GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A denial of service vulnerability exists in the 'DrawImage' function of the magick/render.c file in GraphicsMagick version 1.3.26, which can be exploited by...
GraphicsMagick 'DrawImage' Function Denial of Service Vulnerability
GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'DrawImage' function of the magick/render.c file in GraphicsMagick version 1.3.26. A remote attacker can exploit this...
DEBIAN-CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
UBUNTU-CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
Heap overflow
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service DrawDashPolygon heap-based buffer over-read and application crash via a crafted file...
CVE-2017-14314
GraphicsMagick 1.3.26 is affected by CVE-2017-14314 due to an off-by-one error in DrawImage (magick/render.c) that can trigger a heap-based buffer over-read, enabling remote denial of service via a crafted image. Public advisories (Debian DSA-4321-1, USN-4232-1) confirm this family of issues and ...
The vulnerability of the console-based graphic editor ImageMagick, which allows a hacker to trigger a service failure
The vulnerability of the DrawImage function in the ImageMagick console graphic editor’s draw.c file is caused by buffer overflow in dynamic memory. Exploiting this vulnerability can allow a malicious actor to cause a service failure application termination by using a specially crafted image...
DEBIAN-CVE-2016-10046
Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a denial of service application crash via a crafted image file...
Heap overflow
Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a denial of service application crash via a crafted image file...
UBUNTU-CVE-2016-10046
Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a denial of service application crash via a crafted image file...
CVE-2016-10046
Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a denial of service application crash via a crafted image file...
CVE-2016-10046
CVE-2016-10046 : Heap-based buffer overflow in ImageMagick’s DrawImage (magick/draw.c) allows remote attackers to crash the application. Affected versions are ImageMagick before 6.9.5-5. Root cause is a buffer overflow when processing crafted images. Mitigation: upgrade to ImageMagick 6.9.5-5 or ...
Null pointer dereference
GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted SVG file, related to the 1 DrawImage function in magick/render.c, 2 SVGStartElement function in coders/svg.c, and 3 TraceArcPath function in magick/render.c...