2700 matches found
CVE-2016-8684
GraphicsMagick 1.3.25 contains a memory allocation failure in MagickMalloc (magick/memory.c) that remote attackers could trigger via a crafted image, resulting in a file truncation error for a corrupt file. Multiple connected advisories note this CVE (CVE-2016-8684) and indicate a security update...
CVE-2016-8682
CVE-2016-8682 affects GraphicsMagick 1.3.25 and earlier. The ReadSCTImage function in coders/sct.c allows remote attackers to cause a denial of service via an crafted SCT header, due to an out-of-bounds read. Several connected advisories confirm the issue and note that updates contain fixes (e.g....
CVE-2016-8683
The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...
CVE-2016-8684
The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...
CVE-2016-8683
The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...
CVE-2016-8682
The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service out-of-bounds read via a crafted SCT header...
CVE-2016-8682
The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service out-of-bounds read via a crafted SCT header...
CVE-2016-8683
The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...
CVE-2016-8684
The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...
openSUSE Security Update : GraphicsMagick (openSUSE-2017-212)
This update for GraphicsMagick fixes several issues. These security issues were fixed : - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped bsc1017310 - CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check...
openSUSE Security Update : GraphicsMagick (openSUSE-2017-214)
This update for GraphicsMagick fixes several issues. These security issues were fixed : - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped bsc1017310 - CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check...
GraphicsMagick 'SVG File Parsing' Denial of Service Vulnerability - 02 - Windows
GraphicsMagick is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Heap overflow
Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...
CVE-2016-7447
Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...
DEBIAN-CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...
CVE-2016-7448
The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service CPU consumption or large memory allocations via vectors involving the header information and the file size...
DEBIAN-CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...
Buffer overflow
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...
CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...