Lucene search
K

2700 matches found

CVE
CVE
added 2017/02/15 7:0 p.m.119 views

CVE-2016-8684

GraphicsMagick 1.3.25 contains a memory allocation failure in MagickMalloc (magick/memory.c) that remote attackers could trigger via a crafted image, resulting in a file truncation error for a corrupt file. Multiple connected advisories note this CVE (CVE-2016-8684) and indicate a security update...

7.8CVSS8.5AI score0.02233EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2017/02/15 7:0 p.m.115 views

CVE-2016-8682

CVE-2016-8682 affects GraphicsMagick 1.3.25 and earlier. The ReadSCTImage function in coders/sct.c allows remote attackers to cause a denial of service via an crafted SCT header, due to an out-of-bounds read. Several connected advisories confirm the issue and note that updates contain fixes (e.g....

7.5CVSS7.8AI score0.0355EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2017/02/15 7:0 p.m.22 views

CVE-2016-8683

The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...

8.7AI score0.01831EPSS
Exploits0References7
AlpineLinux
AlpineLinux
added 2017/02/15 7:0 p.m.32 views

CVE-2016-8684

The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...

7.8CVSS8.8AI score0.02233EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/02/15 7:0 p.m.40 views

CVE-2016-8683

The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...

7.8CVSS8.8AI score0.01831EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/02/15 7:0 p.m.40 views

CVE-2016-8682

The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service out-of-bounds read via a crafted SCT header...

7.5CVSS8.1AI score0.0355EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/02/15 7:0 p.m.27 views

CVE-2016-8682

The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service out-of-bounds read via a crafted SCT header...

7.5CVSS8.2AI score0.0355EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/02/15 7:0 p.m.32 views

CVE-2016-8683

The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...

7.8CVSS8.8AI score0.01831EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/02/15 7:0 p.m.27 views

CVE-2016-8684

The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."...

7.8CVSS8.8AI score0.02233EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/02/09 12:0 a.m.48 views

openSUSE Security Update : GraphicsMagick (openSUSE-2017-212)

This update for GraphicsMagick fixes several issues. These security issues were fixed : - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped bsc1017310 - CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check...

9.8CVSS6.7AI score0.06534EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2017/02/09 12:0 a.m.52 views

openSUSE Security Update : GraphicsMagick (openSUSE-2017-214)

This update for GraphicsMagick fixes several issues. These security issues were fixed : - CVE-2016-10048: Arbitrary module could have been load because relative path were not escaped bsc1017310 - CVE-2016-10050: Corrupt RLE files could have overflowed a heap buffer due to a missing offset check...

9.8CVSS6.8AI score0.06534EPSS
Exploits0References24
OpenVAS
OpenVAS
added 2017/02/07 12:0 a.m.34 views

GraphicsMagick 'SVG File Parsing' Denial of Service Vulnerability - 02 - Windows

GraphicsMagick is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

5.5CVSS7.3AI score0.0199EPSS
Exploits0References3
Prion
Prion
added 2017/02/06 5:59 p.m.23 views

Heap overflow

Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...

7.5CVSS7.9AI score0.04021EPSS
Exploits0References6Affected Software4
NVD
NVD
added 2017/02/06 5:59 p.m.17 views

CVE-2016-7447

Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...

9.8CVSS10AI score0.04021EPSS
Exploits0References6
OSV
OSV
added 2017/02/06 5:59 p.m.1 views

DEBIAN-CVE-2016-7800

Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...

7.5CVSS7AI score0.03845EPSS
Exploits0References1
OSV
OSV
added 2017/02/06 5:59 p.m.8 views

CVE-2016-7448

The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service CPU consumption or large memory allocations via vectors involving the header information and the file size...

7.5CVSS8.2AI score
Exploits0References6
OSV
OSV
added 2017/02/06 5:59 p.m.2 views

DEBIAN-CVE-2016-7446

Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...

9.8CVSS7.9AI score0.03987EPSS
Exploits0References1
Prion
Prion
added 2017/02/06 5:59 p.m.28 views

Buffer overflow

Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...

7.5CVSS7.8AI score0.03987EPSS
Exploits0References6Affected Software4
NVD
NVD
added 2017/02/06 5:59 p.m.16 views

CVE-2016-7449

The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...

7.5CVSS7.3AI score0.03494EPSS
Exploits0References6
NVD
NVD
added 2017/02/06 5:59 p.m.29 views

CVE-2016-7800

Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...

7.5CVSS7.6AI score0.03845EPSS
Exploits0References8
Rows per page
Query Builder