136 matches found
CVE-2020-12672
GraphicsMagick up to 1.3.35 is affected by a heap-based buffer overflow in ReadMNGImage (coders/png.c) per CVE-2020-12672. Remediation observed in multiple advisories is to upgrade GraphicsMagick to a newer version (e.g., 1.3.38 or later, per GLSA-202209-19; DLA-2902 update; openSUSE patch). The ...
CVE-2020-12672
GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c...
GraphicsMagick Buffer Overflow Vulnerability (CNVD-2020-35476)
GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A buffer overflow vulnerability exists in the ReadMNGImage of the oders/png.c file in GraphicsMagick 1.3.35 and prior versions, which stems from not properly...
The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.
The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to a buffer overflow exploit. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...
graphicsmagick:coder_MNG_fuzzer: Heap-buffer-overflow in ReadMNGImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed Report: https://oss-fuzz.com/testcase?key=6322015271387136 Project: graphicsmagick Fuzzing Engine: afl Fuzz Target: coderMNGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 8 Crash Addres...
The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.
The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to reading beyond the buffer boundaries in dynamic memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.
The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created fi...
CVE-2018-9018
In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c. Remote attackers could leverage this vulnerability to cause a crash and denial of service via a crafted mng file...
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2019:1033-1)
This update for ImageMagick fixes the following issues : Security issues fixed : CVE-2019-9956: Fixed a stack-based buffer overflow in PopHexPixel bsc1130330. CVE-2019-10650: Fixed a heap-based buffer over-read in WriteTIFFImage bsc1131317. CVE-2019-7175: Fixed multiple memory leaks in DecodeImag...
GraphicsMagick Buffer Overread Vulnerability (CNVD-2019-12509)
GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A heap buffer over-read vulnerability exists in the ReadMNGImage function in coders/png.c in GraphicsMagick 1.4 snapshot-20190322 Q8, which can be exploited ...
DEBIAN-CVE-2019-11007
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...
UBUNTU-CVE-2019-11007
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...
Heap overflow
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...
CVE-2019-11007
GraphicsMagick 1.4 snapshot-20190322 Q8 is affected by a heap-based buffer over-read in the ReadMNGImage function (coders/png.c), enabling denial of service or information disclosure via image colormaps. Public disclosures and multiple advisories link CVE-2019-11007 to this issue. Impact details ...
CVE-2019-11007
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...
graphicsmagick/coder_MNG_fuzzer: Heap-buffer-overflow in ReadMNGImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5938942376411136 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...
graphicsmagick/coder_MNG_fuzzer: Use-of-uninitialized-value in ReadMNGImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5262232706351104 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...
graphicsmagick/coder_MNG_fuzzer: Index-out-of-bounds in ReadMNGImage
Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5061202265767936 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: libfuzzerubsangraphicsmagick Platform Id: linux Crash Type:...
imagemagick/ping_mng_fuzzer: Use-of-uninitialized-value in ReadOneMNGImage
Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5221778856083456 Project: imagemagick Fuzzer: libFuzzerimagemagickpingmngfuzzer Fuzz target binary: pingmngfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...
Debian DLA-1322-1 : graphicsmagick security update
Various security issues were discovered in Graphicsmagick, a collection of image processing tools. CVE-2017-18219 An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted file that triggers an...