Lucene search
K

37 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.5 views

SUSE SLED15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2025:4427-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4427-1 advisory. - CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead t...

7.5CVSS5.9AI score0.00456EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/12/18 12:0 a.m.5 views

SUSE SLES15: ImageMagick / ImageMagick-config-7-SUSE / etc (SUSE-SU-2025:4428-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4428-1 advisory. - CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead to crashes or memory...

7.5CVSS5.9AI score0.00456EPSS
Exploits0References7
OSV
OSV
added 2025/12/17 11:26 a.m.3 views

SUSE-SU-2025:4429-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-66628: possible integer overflow in the TIM image parser's ReadTIMImage function can lead to arbitrary memory disclosure on 32-bit systems bsc1254820...

7.5CVSS5.8AI score0.00456EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/12/17 11:26 a.m.3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead to crashes or memory corruption bsc1254435. CVE-2025-66628: possible integer overflow in the TIM image parser's ReadTIMImage function...

8.2CVSS7.1AI score0.00456EPSS
Exploits0References8
OSV
OSV
added 2025/12/17 11:26 a.m.2 views

SUSE-SU-2025:4428-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead to crashes or memory corruption bsc1254435. - CVE-2025-66628: possible integer overflow in the TIM image parser's ReadTIMImage...

7.5CVSS5.9AI score0.00456EPSS
Exploits0References5
SUSE Linux
SUSE Linux
added 2025/12/17 11:24 a.m.4 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead to crashes or memory corruption bsc1254435. CVE-2025-66628: possible integer overflow in the TIM image parser's ReadTIMImage function...

8.2CVSS7.2AI score0.00456EPSS
Exploits0References8
OSV
OSV
added 2025/12/17 11:24 a.m.3 views

SUSE-SU-2025:4427-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-65955: possible use-after-free/double-free in Options::fontFamily when clearing a family can lead to crashes or memory corruption bsc1254435. - CVE-2025-66628: possible integer overflow in the TIM image parser's ReadTIMImage...

7.5CVSS5.8AI score0.00456EPSS
Exploits0References5
Veracode
Veracode
added 2025/12/13 5:24 a.m.8 views

Integer Overflow

ImageMagick is vulnerable to an integer overflow. The vulnerability is due to improper validation of width and height values in the TIM image parser’s ReadTIMImage function when calculating the image size without overflow checks, which allows an attacker to supply a crafted TIM image that trigger...

7.5CVSS5.9AI score0.00456EPSS
Exploits0References3Affected Software7
SUSE CVE
SUSE CVE
added 2025/12/12 12:24 a.m.7 views

SUSE CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7.4AI score0.00456EPSS
Exploits0References9
NVD
NVD
added 2025/12/10 10:16 p.m.6 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS0.00456EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 10:16 p.m.5 views

DEBIAN-CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS5.7AI score0.00456EPSS
Exploits0References1
OSV
OSV
added 2025/12/10 10:4 p.m.3 views

CVE-2025-66628 ImageMagick is vulnerable to an Integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS7.2AI score0.00456EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/12/10 10:4 p.m.5 views

CVE-2025-66628

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. In versions 7.1.2-9 and prior, the TIM PSX TIM image parser contains a critical integer overflow vulnerability in its ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file...

7.5CVSS5.6AI score0.00456EPSS
Exploits0
Snyk
Snyk
added 2025/12/10 3:47 p.m.3 views

Out-of-bounds Read

Overview Magick.NET-Q8-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

8.7CVSS6.7AI score0.00456EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/10 3:47 p.m.4 views

Out-of-bounds Read

Overview Magick.NET-Q16-HDRI-AnyCPU is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package...

8.7CVSS6.7AI score0.00456EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/10 3:47 p.m.2 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read in the ReadTIMImage function. An attacker can access sensitive memory contents by supplying a specially crafted TIM image file with large width and height values, causing an integer overflow and subsequent out-of-boun...

8.7CVSS6.9AI score0.00456EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/12/10 3:47 p.m.9 views

ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only)

Summary The TIM PSX TIM image parser in ImageMagick contains a critical integer overflow vulnerability in the ReadTIMImage function coders/tim.c. The code reads width and height 16-bit values from the file header and calculates imagesize = 2 width height without checking for overflow. On 32-bit...

7.5CVSS7.4AI score0.00456EPSS
Exploits0References3Affected Software6
Rows per page
Query Builder