Lucene search
K

2700 matches found

Cvelist
Cvelist
added 2017/02/03 3:0 p.m.23 views

CVE-2016-2318

GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted SVG file, related to the 1 DrawImage function in magick/render.c, 2 SVGStartElement function in coders/svg.c, and 3 TraceArcPath function in magick/render.c...

6.8AI score0.01879EPSS
Exploits0References11
CVE
CVE
added 2017/02/03 3:0 p.m.84 views

CVE-2016-2318

GraphicsMagick 1.3.23 is affected by CVE-2016-2318, which can cause denial of service via a crafted SVG file due to segmentation faults in render SVG handling (DrawImage, SVGStartElement, TraceArcPath). Patches exist in downstream advisories: Debian/DSA-3746 fixes to GraphicsMagick (e.g., 1.3.20-...

5.5CVSS6.6AI score0.01879EPSS
Exploits0References11Affected Software1
CVE
CVE
added 2017/02/03 3:0 p.m.119 views

CVE-2016-2317

GraphicsMagick’s SVG processing for CVE-2016-2317 comprises stack and heap buffer overflows in MVG/SVG rendering (TracePoint, GetToken, GetTransformTokens). Connected advisories confirm this was addressed in newer GraphicsMagick packages across distros (e.g., Debian Jessie: 1.3.20-3+deb8u2; Stret...

5.5CVSS6.8AI score0.0199EPSS
Exploits0References12Affected Software1
AlpineLinux
AlpineLinux
added 2017/02/03 3:0 p.m.40 views

CVE-2016-2317

Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service crash via a crafted SVG file, related to the 1 TracePoint function in magick/render.c, 2 GetToken function in magick/utility.c, and 3 GetTransformTokens function in coders/svg.c...

5.5CVSS7.2AI score0.0199EPSS
Exploits0
CVE
CVE
added 2017/02/03 3:0 p.m.86 views

CVE-2016-5241

GraphicsMagick vulnerability CVE-2016-5241 affects the GraphicsMagick image processing suite (GraphicsMagick) with vulnerable code path in magick/render.c. The issue occurs when handling SVG input, where a crafted SVG can trigger an arithmetic exception and cause the application to crash, i.e., a...

5.5CVSS6.6AI score0.01552EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2017/02/03 3:0 p.m.21 views

CVE-2016-2317

Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service crash via a crafted SVG file, related to the 1 TracePoint function in magick/render.c, 2 GetToken function in magick/utility.c, and 3 GetTransformTokens function in coders/svg.c...

7AI score0.0199EPSS
Exploits0References12
Debian CVE
Debian CVE
added 2017/02/03 3:0 p.m.31 views

CVE-2016-2318

GraphicsMagick 1.3.23 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted SVG file, related to the 1 DrawImage function in magick/render.c, 2 SVGStartElement function in coders/svg.c, and 3 TraceArcPath function in magick/render.c...

5.5CVSS5.6AI score0.01879EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/02/03 3:0 p.m.27 views

CVE-2016-5241

magick/render.c in GraphicsMagick before 1.3.24 allows remote attackers to cause a denial of service arithmetic exception and application crash via a crafted svg file...

5.5CVSS5.5AI score0.01552EPSS
Exploits0
Debian CVE
Debian CVE
added 2017/02/03 3:0 p.m.39 views

CVE-2016-2317

Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service crash via a crafted SVG file, related to the 1 TracePoint function in magick/render.c, 2 GetToken function in magick/utility.c, and 3 GetTransformTokens function in coders/svg.c...

5.5CVSS5.8AI score0.0199EPSS
Exploits0
OpenVAS
OpenVAS
added 2017/02/02 12:0 a.m.26 views

GraphicsMagick Multiple Vulnerabilities (Feb 2017) - Windows

GraphicsMagick is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

9.8CVSS8.8AI score0.03905EPSS
Exploits0References6
OSV
OSV
added 2017/01/27 5:25 p.m.8 views

SUSE-SU-2017:0305-1 Security update for GraphicsMagick

This update for GraphicsMagick fixes the following issues: CVE-2016-9556 Possible Heap-overflow found by fuzzing bsc1011130 CVE-2016-9559 Possible Null pointer access found by fuzzing bsc1011136 CVE-2016-8866 Possible memory allocation failure in AcquireMagickMemory bsc1009318 CVE-2016-9830: Memo...

8.8CVSS7AI score0.04613EPSS
Exploits1References10
OSV
OSV
added 2017/01/18 5:59 p.m.0 views

DEBIAN-CVE-2016-7997

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

7.5CVSS8.1AI score0.03354EPSS
Exploits0References1
NVD
NVD
added 2017/01/18 5:59 p.m.21 views

CVE-2016-7997

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

7.5CVSS7.2AI score0.03354EPSS
Exploits0References4
OSV
OSV
added 2017/01/18 5:59 p.m.6 views

CVE-2016-7997

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

7.5CVSS7.4AI score
Exploits0References4
UbuntuCve
UbuntuCve
added 2017/01/18 5:59 p.m.23 views

CVE-2016-7996

Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries...

9.8CVSS7.5AI score0.03905EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/01/18 5:59 p.m.37 views

CVE-2016-7997

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

7.5CVSS7.1AI score0.03354EPSS
Exploits0References2
NVD
NVD
added 2017/01/18 5:59 p.m.23 views

CVE-2016-7996

Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries...

9.8CVSS9.9AI score0.03905EPSS
Exploits0References4
OSV
OSV
added 2017/01/18 5:59 p.m.1 views

UBUNTU-CVE-2016-7997

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

7.5CVSS7.2AI score0.03354EPSS
Exploits0References3
Prion
Prion
added 2017/01/18 5:59 p.m.20 views

Heap overflow

Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact via a colormap with a large number of entries...

7.5CVSS7.8AI score0.03905EPSS
Exploits0References4Affected Software1
Prion
Prion
added 2017/01/18 5:59 p.m.18 views

Null pointer dereference

The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service assertion failure and crash via vectors related to a ReferenceBlob and a NULL pointer...

5CVSS6.9AI score0.03354EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder