2700 matches found
CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...
UBUNTU-CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...
CVE-2016-7447
Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...
CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...
CVE-2016-7448
The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service CPU consumption or large memory allocations via vectors involving the header information and the file size...
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...
CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...
CVE-2016-7800
GraphicsMagick 1.3.25 and earlier are affected by CVE-2016-7800 due to an integer underflow in the parse8BIM function (coders/meta.c), which can be triggered by a crafted 8BIM chunk to cause a heap-based buffer overflow and a denial of service (application crash). Several connected advisories con...
CVE-2016-7447
GraphicsMagick (before 1.3.25) is affected by a heap-based buffer overflow in the EscapeParenthesis function. The CVE-2016-7447 entry notes remote, unspecified impact via unknown vectors. Multiple external advisories indicate fixes in newer releases (e.g., 1.3.25 per openSUSE/SUSE notes; Debian a...
CVE-2016-7449
CVE-2016-7449 affects GraphicsMagick 1.3.24 where TIFFGetField() in coders/tiff.c can cause a denial of service via a malformed file containing an “unterminated” string. Connected sources confirm a remote-exploitation risk leading to an out-of-bounds heap read. CVSS details: v3 base score 7.5 (Hi...
CVE-2016-7446
CVE-2016-7446 affects GraphicsMagick; a buffer overflow in the MVG and SVG rendering code (GraphicsMagick 1.3.24) can be triggered by crafted SVG/malformed input, allowing remote attackers to cause unspecified impact. The vulnerability is noted as resulting from an incomplete patch for CVE-2016-2...
CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service application crash via a crafted 8BIM chunk, which triggers a heap-based buffer overflow...
CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote attackers to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317...
CVE-2016-7447
Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...
CVE-2016-7448
The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service CPU consumption or large memory allocations via vectors involving the header information and the file size...
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...
CVE-2016-7448
CVE-2016-7448 affects GraphicsMagick (Utah RLE reader) up to version 1.3.25. The vulnerability allows remote attackers to cause a denial of service via header information and file size handling, leading to CPU consumption or large memory allocations. This is caused by improper handling in the Uta...
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...
CVE-2016-7448
The Utah RLE reader in GraphicsMagick before 1.3.25 allows remote attackers to cause a denial of service CPU consumption or large memory allocations via vectors involving the header information and the file size...
CVE-2016-7447
Heap-based buffer overflow in the EscapeParenthesis function in GraphicsMagick before 1.3.25 allows remote attackers to have unspecified impact via unknown vectors...