28 matches found
EUVD-2017-5683
Malware in sbrugna...
SUSE CVE-2017-18273
In ImageMagick 7.0.7-16 Q16 x8664 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted image file that is mishandled in a GetImageIndexInList call...
The vulnerability of the ReadTXTImage() function in the ImageMagick console graphics editor’s coders/txt.c component allows a malicious actor to cause a service failure due to a numerical overflow of the value being read.
The vulnerability of the ReadTXTImage function in the ImageMagick console graphics editor’s coders/txt.c component is related to a numerical overflow condition. Exploiting this vulnerability allows an attacker to cause a service failure by invoking the TXT file, which requires a very large value ...
ImageMagick: infinite loop ReadTXTImage in function in coders/txt.c
In ImageMagick 7.0.7-16 Q16 x8664 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted image file that is mishandled in a GetImageIndexInList call...
Denial Of Service (DoS)
ImageMagick is vulnerable to denial of service DoS attack. Sending a malicious image file to the ReadTXTImage function in coders/txt.c leads to a huge CPU consumption...
ImageMagick Infinite Loop Vulnerability
ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. An infinite loop vulnerability exists in the ReadTXTImage function in coders/txt.c in ImageMagick 7.0.7-16 Q16 x8664 2017-12-22. An attacker can exploit this...
Code injection
In ImageMagick 7.0.7-16 Q16 x8664 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted image file that is mishandled in a GetImageIndexInList call...
CVE-2017-18273
In ImageMagick 7.0.7-16 Q16 x8664 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted image file that is mishandled in a GetImageIndexInList call...
CVE-2017-18273
In ImageMagick 7.0.7-16 Q16 x8664 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which allows attackers to cause a denial of service CPU exhaustion via a crafted image file that is mishandled in a GetImageIndexInList call...
SUSE SLED12 / SLES12 Security Update : ImageMagick (SUSE-SU-2017:3388-1)
This update for ImageMagick fixes the following issues : - CVE-2017-14989: use-after-free in RenderFreetype in MagickCore/annotate.c could lead to denial of service bsc1061254 - CVE-2017-14682: GetNextToken in MagickCore/token.c heap buffer overflow could lead to denial of service bsc1060176 -...
CVE-2017-14173
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
Denial Of Service (DoS) Through Infinite Loop
ImageMagick is vulnerable to denial of service DoS attacks. A malicious user can pass a txt file to the application through the ReadTXTImage function in coders/txt.c to cause an infinite loop...
ImageMagick 'ReadTXTImage()' Function Integer Overflow Vulnerability
ImageMagick is a set of open source image processing software. The software can read, convert and write images in a variety of formats. An integer overflow vulnerability exists in the 'ReadTXTImage' function in the coders/txt.c file in ImageMagick version 7.0.6-10. An attacker can exploit this...
Integer overflow
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
CVE-2017-14173
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
CVE-2017-14173
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
CVE-2017-14173
CVE-2017-14173 affects ImageMagick (ImageMagick 7.0.6-10) and specifically the TXT image codec. The vulnerability arises in ReadTXTImage() (coders/txt.c) where an integer overflow can occur on the addition GetQuantumRange(depth)+1 when depth is large, causing an infinite loop when processing a cr...
CVE-2017-14173
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
CVE-2017-14173
In the function ReadTXTImage in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRangedepth+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a...
The vulnerability of the ReadTXTImage function in the console-based ImageMagick graphics editor allows a hacker to cause a service failure.
The vulnerability of the ReadTXTImage function in the console-based ImageMagick graphics editor is related to insufficient checking for the file end condition. Exploiting this vulnerability can allow an attacker, operating remotely, to cause a service failure an infinite loop using a specially...