Lucene search
K

136 matches found

CVE
CVE
added 2020/05/06 2:47 a.m.243 views

CVE-2020-12672

GraphicsMagick up to 1.3.35 is affected by a heap-based buffer overflow in ReadMNGImage (coders/png.c) per CVE-2020-12672. Remediation observed in multiple advisories is to upgrade GraphicsMagick to a newer version (e.g., 1.3.38 or later, per GLSA-202209-19; DLA-2902 update; openSUSE patch). The ...

7.5CVSS7.6AI score0.02853EPSS
Exploits1References5Affected Software1
AlpineLinux
AlpineLinux
added 2020/05/06 2:47 a.m.38 views

CVE-2020-12672

GraphicsMagick through 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c...

7.5CVSS7.9AI score0.02853EPSS
Exploits1
CNVD
CNVD
added 2020/05/06 12:0 a.m.5 views

GraphicsMagick Buffer Overflow Vulnerability (CNVD-2020-35476)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A buffer overflow vulnerability exists in the ReadMNGImage of the oders/png.c file in GraphicsMagick 1.3.35 and prior versions, which stems from not properly...

7.5CVSS9.5AI score0.02853EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2019/11/25 12:0 a.m.6 views

The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.

The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to a buffer overflow exploit. Exploiting this vulnerability could allow an attacker to execute arbitrary code remotely...

10CVSS8.5AI score0.01827EPSS
Exploits0References6Affected Software2
ossfuzz
ossfuzz
added 2019/11/20 4:6 p.m.16 views

graphicsmagick:coder_MNG_fuzzer: Heap-buffer-overflow in ReadMNGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed Report: https://oss-fuzz.com/testcase?key=6322015271387136 Project: graphicsmagick Fuzzing Engine: afl Fuzz Target: coderMNGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type: Heap-buffer-overflow WRITE 8 Crash Addres...

6.8AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/11/18 12:0 a.m.7 views

The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.

The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to reading beyond the buffer boundaries in dynamic memory. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS7.4AI score0.01875EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2019/11/18 12:0 a.m.5 views

The vulnerability of the ReadMNGImage function (coders/png.c) in the cross-platform library for working with graphics, GraphicsMagick, allows a hacker to execute arbitrary code.

The vulnerability of the ReadMNGImage function coder/png.c in the cross-platform library for working with graphics, GraphicsMagick, is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code using a specially created fi...

10CVSS8AI score0.2831EPSS
Exploits0References11Affected Software2
RedhatCVE
RedhatCVE
added 2019/05/14 12:2 p.m.30 views

CVE-2018-9018

In GraphicsMagick 1.3.28, there is a divide-by-zero in the ReadMNGImage function of coders/png.c. Remote attackers could leverage this vulnerability to cause a crash and denial of service via a crafted mng file...

6.5CVSS4.7AI score0.03193EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2019/04/26 12:0 a.m.41 views

SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2019:1033-1)

This update for ImageMagick fixes the following issues : Security issues fixed : CVE-2019-9956: Fixed a stack-based buffer overflow in PopHexPixel bsc1130330. CVE-2019-10650: Fixed a heap-based buffer over-read in WriteTIFFImage bsc1131317. CVE-2019-7175: Fixed multiple memory leaks in DecodeImag...

8.8CVSS7AI score0.05916EPSS
Exploits11References41
CNVD
CNVD
added 2019/04/09 12:0 a.m.2 views

GraphicsMagick Buffer Overread Vulnerability (CNVD-2019-12509)

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A heap buffer over-read vulnerability exists in the ReadMNGImage function in coders/png.c in GraphicsMagick 1.4 snapshot-20190322 Q8, which can be exploited ...

8.1CVSS9.1AI score0.0197EPSS
Exploits0References1
OSV
OSV
added 2019/04/08 7:29 p.m.1 views

DEBIAN-CVE-2019-11007

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...

8.1CVSS6.7AI score0.0197EPSS
Exploits0References1
OSV
OSV
added 2019/04/08 7:29 p.m.2 views

UBUNTU-CVE-2019-11007

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...

8.1CVSS7.4AI score0.0197EPSS
Exploits0References6
Prion
Prion
added 2019/04/08 7:29 p.m.21 views

Heap overflow

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...

5.8CVSS8.1AI score0.0197EPSS
Exploits0References10Affected Software5
CVE
CVE
added 2019/04/08 6:18 p.m.169 views

CVE-2019-11007

GraphicsMagick 1.4 snapshot-20190322 Q8 is affected by a heap-based buffer over-read in the ReadMNGImage function (coders/png.c), enabling denial of service or information disclosure via image colormaps. Public disclosures and multiple advisories link CVE-2019-11007 to this issue. Impact details ...

8.1CVSS8AI score0.0197EPSS
Exploits0References10Affected Software1
Cvelist
Cvelist
added 2019/04/08 6:18 p.m.28 views

CVE-2019-11007

In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the ReadMNGImage function of coders/png.c, which allows attackers to cause a denial of service or information disclosure via an image colormap...

8.1AI score0.0197EPSS
Exploits0References10
ossfuzz
ossfuzz
added 2018/06/11 11:57 a.m.15 views

graphicsmagick/coder_MNG_fuzzer: Heap-buffer-overflow in ReadMNGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5938942376411136 Project: graphicsmagick Fuzzer: aflgraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: aflasangraphicsmagick Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2018/05/28 4:0 p.m.15 views

graphicsmagick/coder_MNG_fuzzer: Use-of-uninitialized-value in ReadMNGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5262232706351104 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2018/05/28 4:0 p.m.20 views

graphicsmagick/coder_MNG_fuzzer: Index-out-of-bounds in ReadMNGImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5061202265767936 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderMNGfuzzer Fuzz target binary: coderMNGfuzzer Job Type: libfuzzerubsangraphicsmagick Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
ossfuzz
ossfuzz
added 2018/04/21 3:46 a.m.14 views

imagemagick/ping_mng_fuzzer: Use-of-uninitialized-value in ReadOneMNGImage

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5221778856083456 Project: imagemagick Fuzzer: libFuzzerimagemagickpingmngfuzzer Fuzz target binary: pingmngfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

6.8AI score
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/03/29 12:0 a.m.43 views

Debian DLA-1322-1 : graphicsmagick security update

Various security issues were discovered in Graphicsmagick, a collection of image processing tools. CVE-2017-18219 An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service via a crafted file that triggers an...

8.8CVSS6.7AI score0.2831EPSS
Exploits4References8
Rows per page
Query Builder