Lucene search
K

2700 matches found

ArchLinux
ArchLinux
added 2016/09/09 12:0 a.m.36 views

graphicsmagick: multiple issues

A last instance of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. This problem was originally reported by Gustavo Grieco. 2. A possible heap overflow of the EscapeParenthesis function. While I was not able to reproduce it for myself, the implementation is replaced...

6.4CVSS0.9AI score0.0199EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/08/16 12:0 a.m.43 views

openSUSE Security Update : GraphicsMagick (openSUSE-2016-984)

This update for GraphicsMagick fixes the following issues : - CVE-2014-9805: SEGV due to a corrupted pnm file boo983752 - CVE-2016-5240: SVG converting issue resulting in DoS endless loop boo983309 - CVE-2016-5241: Arithmetic exception div by 0 in SVG conversion boo983455 - CVE-2014-9846: Overflo...

9.8CVSS7.1AI score0.04852EPSS
Exploits0References43
OpenVAS
OpenVAS
added 2016/08/16 12:0 a.m.47 views

openSUSE: Security Advisory for GraphicsMagick (openSUSE-SU-2016:2073-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.6AI score0.04824EPSS
Exploits0References1
OPENSUSE Linux
OPENSUSE Linux
added 2016/08/15 3:11 p.m.40 views

Security update for GraphicsMagick (important)

This update for GraphicsMagick fixes the following issues: - CVE-2014-9805: SEGV due to a corrupted pnm file boo983752 - CVE-2016-5240: SVG converting issue resulting in DoS endless loop boo983309 - CVE-2016-5241: Arithmetic exception div by 0 in SVG conversion boo983455 - CVE-2014-9846: Overflow...

6.4CVSS1AI score0.04852EPSS
Exploits0References21
Tenable Nessus
Tenable Nessus
added 2016/08/02 12:0 a.m.40 views

Debian DLA-547-2 : graphicsmagick regression update

The fix for CVE-2016-5240 was improperly applied which resulted in GraphicsMagick crashing instead of entering an infinite loop with the given proof of concept. Furthermore, the original announcement mistakently used the identifier 'DLA 574-1' instead of the correct one, 'DLA 547-1'. For Debian 7...

5.5CVSS6.9AI score0.02177EPSS
Exploits0References3
OSV
OSV
added 2016/07/14 8:33 p.m.10 views

MGASA-2016-0252 Updated graphicsmagick packages fix security vulnerability

A read out-of-bound in the parsing of gif files using GraphicsMagick CVE-2015-8808. - Infinite loop caused by converting a circularly defined svg file CVE-2016-5240. - Fix another case of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. - arithmetic exception...

10CVSS7.8AI score0.49982EPSS
Exploits2References7
Mageia
Mageia
added 2016/07/14 8:33 p.m.72 views

Updated graphicsmagick packages fix security vulnerability

- A read out-of-bound in the parsing of gif files using GraphicsMagick CVE-2015-8808. - Infinite loop caused by converting a circularly defined svg file CVE-2016-5240. - Fix another case of CVE-2016-2317 heap buffer overflow in the MVG rendering code also impacts SVG. - arithmetic exception...

10CVSS8.5AI score0.49982EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.42 views

Fedora 23 : GraphicsMagick (2016-7a878ed298)

New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

10CVSS7.2AI score0.49982EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.37 views

Fedora 22 : GraphicsMagick (2016-40ccaff4d1)

New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

10CVSS7.2AI score0.49982EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2016/07/14 12:0 a.m.41 views

Fedora 24 : GraphicsMagick (2016-0d90ead5d7)

New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.htmlmay-30-2016 Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as...

10CVSS7.2AI score0.49982EPSS
Exploits1References5
NVD
NVD
added 2016/07/13 3:59 p.m.23 views

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS5.4AI score0.01541EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2016/07/13 3:59 p.m.31 views

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS6.4AI score0.01541EPSS
Exploits0References3
OSV
OSV
added 2016/07/13 3:59 p.m.1 views

DEBIAN-CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS6.7AI score0.01541EPSS
Exploits0References1
OSV
OSV
added 2016/07/13 3:59 p.m.1 views

UBUNTU-CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS6.4AI score0.01541EPSS
Exploits0References4
OSV
OSV
added 2016/07/13 3:59 p.m.8 views

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS6.8AI score
Exploits0References7
Cvelist
Cvelist
added 2016/07/13 3:0 p.m.26 views

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.3AI score0.01541EPSS
Exploits0References7
CVE
CVE
added 2016/07/13 3:0 p.m.80 views

CVE-2015-8808

CVE-2015-8808 affects GraphicsMagick (GIF decoding path). The DecodeImage function in coders/gif.c can trigger an out-of-bounds read on crafted GIFs, leading to denial of service via uninitialized memory access. The issue is tied to the GIF parser in GraphicsMagick 1.3.18 and has been addressed i...

5.5CVSS5.2AI score0.01541EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2016/07/13 3:0 p.m.39 views

CVE-2015-8808

The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service uninitialized memory access via a crafted GIF file...

5.5CVSS5.5AI score0.01541EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/07/12 12:0 a.m.34 views

F5 Networks BIG-IP : GraphicsMagick vulnerability (K82747025)

The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename. CVE-2016-5118 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

10CVSS7.8AI score0.49982EPSS
Exploits1References2
Debian
Debian
added 2016/07/11 4:27 p.m.37 views

[SECURITY] [DLA 574-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.16-1.1+deb7u3 CVE IDs : 2016-5240 2016-5241 It was discovered that there were two denial of service vulnerabilities in graphicsmagick, a collection of image processing tools: CVE-2016-5240: Prevent denial-of-service by detecting and rejecting negative...

5.5CVSS7.5AI score0.02177EPSS
Exploits0
Rows per page
Query Builder