Astra Linux - уязвимость в imagemagick

The PALM image coder in coders/palm.c makes an improper call to AcquireQuantumMemory in the routine WritePALMImage. This call requires an offset of 256 bytes. This could lead to a out-of-bounds read later in the routine. The patch adds 256 bytes to bytesperrow in the call to AcquireQuantumMemory...

Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017569)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017569 advisory. A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick...

CVE-2023-21988

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

CVE-2023-21989

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

UBUNTU-CVE-2023-21988

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are Prior to 6.1.44 and Prior to 7.0.8. Easily exploitable vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox...

SUSE CVE-2019-13133

ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadBMPImage in coders/bmp.c...

SUSE CVE-2020-25674

WriteOnePNGImage from coders/png.c the PNG coder has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible for the colormap to have less than 256 valid values but the loop condition will loop 256 times,...

DEBIAN-CVE-2020-27758

A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long long. This would most likely lead to an impact to application availability, but...

DEBIAN-CVE-2020-27750

A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char and math division by zero. This would...

UBUNTU-CVE-2020-27750

A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char and math division by zero. This would...

ImageMagick: Memory leak in the WritePDFImage function in coders/pdf.c

In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c...

ImageMagick heap buffer overflow vulnerability (CNVD-2019-41020)

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A heap buffer overflow vulnerability exists in ReadPSInfo in coders/ps.c in versions of ImageMagick prior to 7.0.8-54. An attacker could exploit this vulnerability to...

ImageMagick memory misreference vulnerability (CNVD-2019-41003)

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A memory misreference vulnerability exists in DestroyStringInfo in MagickCore/string.c in versions of ImageMagick prior to 7.0.8-55. The vulnerability stems from the...

ImageMagick Uses Uninitialized Values Vulnerability (CNVD-2019-29234)

ImageMagick Studio ImageMagick is a suite of open-source image processing software from the American company ImageMagick Studio. The software can read, convert or write images in a variety of formats. A use of uninitialized values vulnerability exists in the ReadCUTImage function in coders/cut.c ...

ImageMagick Resource Management Error Vulnerability (CNVD-2019-29430)

mageMagick is the United States ImageMagick Studio, Inc. of a set of open source image processing software . A memory disclosure vulnerability exists in the 'ReadVIFFImage' function in the coders/viff.c file in ImageMagick Studio ImageMagick versions prior to 7.0.8-50. An attacker can exploit thi...

PT-2019-5492 · Graphicsmagick +6 · Graphicsmagick +6

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.8-25 GraphicsMagick versions prior to 1.3.32 Description: The issue is related to memory management errors in the WritePDFImage function of graphic editors ImageMagick and GraphicsMagick. Exploitation of this...

CVE-2016-5768

Double free vulnerability in the phpmbregexeregreplaceexec function in phpmbregex.c in the mbstring extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 allows remote attackers to execute arbitrary code or cause a denial of service application crash by leveraging a callback...