GraphicsMagick Buffer Over Read Vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A heap buffer over-read vulnerability exists in the ReadXWDImage function in coders/xwd.c in GraphicsMagick 1.4 snapshot-20190322 Q8, which can be exploited ...

GraphicsMagick Buffer Overread Vulnerability (CNVD-2019-12509)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A heap buffer over-read vulnerability exists in the ReadMNGImage function in coders/png.c in GraphicsMagick 1.4 snapshot-20190322 Q8, which can be exploited ...

GraphicsMagick Buffer Overflow Vulnerability (CNVD-2019-12508)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A heap buffer overflow vulnerability exists in the WriteXWDImage function in coders/xwd.c in GraphicsMagick 1.4 snapshot-20190322 Q8, which can be exploited ...

DEBIAN-CVE-2019-11006

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadMIFFImage of coders/miff.c, which allows attackers to cause a denial of service or information disclosure via an RLE packet...

DEBIAN-CVE-2019-11008

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted image file...

DEBIAN-CVE-2019-11010

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the function ReadMPCImage of coders/mpc.c, which allows attackers to cause a denial of service via a crafted image file...

DEBIAN-CVE-2019-11007

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...

UBUNTU-CVE-2019-11008

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer overflow in the function WriteXWDImage of coders/xwd.c, which allows remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a crafted image file...

PT-2019-5196 · Graphicsmagick +3 · Graphicsmagick +3

Name of the Vulnerable Software and Affected Versions: GraphicsMagick version 1.4 snapshot-20190322 Q8 Description: The issue is related to a heap-based buffer overflow in the WriteXWDImage function of coders/xwd.c. This allows remote attackers to cause a denial of service, potentially leading to...

PT-2019-5204 · Graphicsmagick +4 · Graphicsmagick +4

Name of the Vulnerable Software and Affected Versions: GraphicsMagick versions 1.4 snapshot-20190322 Q8 Description: The issue is related to a heap-based buffer over-read in the ReadMIFFImage function, which can be exploited by remote attackers to cause a denial of service or disclose information...

DEBIAN-CVE-2019-7397

In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c...

The vulnerability of the cross-platform library for working with GraphicsMagick allows a hacker to trigger a service failure or execute arbitrary code.

The vulnerability of the cross-platform library for working with GraphicsMagick is related to buffer overflows during reading WPG formats. Exploiting this vulnerability can allow a remote attacker to cause service interruptions or execute arbitrary code using a color map with a large number of...

UBUNTU-CVE-2019-7397

In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c...

PT-2019-5492 · Graphicsmagick +6 · Graphicsmagick +6

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-25 GraphicsMagick versions prior to 1.3.32 Description: The issue is related to memory management errors in the WritePDFImage function of graphic editors ImageMagick and GraphicsMagick. Exploitation of this...

The vulnerability of the GraphicsMagick graphic editor, related to the lack of checks for division by zero, allows a hacker to trigger a service failure.

The vulnerability of the GraphicsMagick graphic editor is related to an error that causes division by zero when reading MNG images from the png.c file. Exploiting this vulnerability can allow a remote attacker to cause the application to terminate abnormally using a specially crafted image...

UBUNTU-CVE-2018-20189

In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping which is not available beyond 8-bits/sample, and therefore lacks indexes...

DEBIAN-CVE-2018-20185

In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows attackers to cause a denial of service via a crafted bmp image file. This only affects GraphicsMagick installations with customized BMP limits...

UBUNTU-CVE-2018-20184

In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA...

PT-2018-3481 · Graphicsmagick +3 · Graphicsmagick +3

Name of the Vulnerable Software and Affected Versions: GraphicsMagick version 1.3.31 Description: The issue is related to the ReadDIBImage function in GraphicsMagick, which lacks proper input validation. This can be exploited by a remote attacker using a specially crafted dib file, potentially...

PT-2018-3483 · Graphicsmagick +3 · Graphicsmagick +3

Name of the Vulnerable Software and Affected Versions: GraphicsMagick versions 1.4 snapshot-20181209 Q8 Description: The issue is related to a heap-based buffer overflow in the WriteTGAImage function, which can be exploited by attackers to cause a denial of service. This can be achieved by using ...