991 matches found
CVE-2020-25665
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...
Out-of-bounds
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...
UBUNTU-CVE-2020-25665
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...
CVE-2020-25664
In WriteOnePNGImage of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory and memset allows for an out-of-bounds write later when PopShortPixel from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply ...
Design/Logic Flaw
In WriteOnePNGImage of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory and memset allows for an out-of-bounds write later when PopShortPixel from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply ...
CVE-2020-25665
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...
CVE-2020-25664
CVE-2020-25664 affects ImageMagick older than 6.9.10-68 and 7.0.8-68. In WriteOnePNGImage() of the PNG coder, an improper use of AcquireVirtualMemory() and memset() can lead to an out-of-bounds write after PopShortPixel() is invoked; the fix is to add 256 to rowbytes. An attacker with the ability...
CVE-2020-25664
In WriteOnePNGImage of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory and memset allows for an out-of-bounds write later when PopShortPixel from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply ...
CVE-2020-25664
In WriteOnePNGImage of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory and memset allows for an out-of-bounds write later when PopShortPixel from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply ...
CVE-2020-25674
WriteOnePNGImage from coders/png.c the PNG coder has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible for the colormap to have less than 256 valid values but the loop condition will loop 256 times,...
ImageMagick Studio ImageMagick 缓冲区错误漏洞
Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.8-68, which stem...
ImageMagick Studio ImageMagick 安全漏洞
Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A memory leak vulnerability exists in the MIFF coder in versions of ImageMagick prior...
CVE-2020-25665
The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...
Imagemagick Studio ImageMagick Input Validation Error Vulnerability (CNVD-2020-70257)
Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.8-68, which stem...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service. An out-of-bounds read in the PALM image coder at coders/palm.c due to an improper call to AcquireQuantumMemory in routine WritePALMImage allows an attacker to crash the application...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service. An out-of-bounds write in WriteOnePNGImage of the PNG coder in coders/png.c due to an improper call to AcquireVirtualMemory and memset allows an attacker to crash the application...
Denial Of Service (DoS)
imagemagick is vulnerable to denial of service. Memory leaks in the MIFF coder in /coders/miff.c due to improper image depth values allow an attacker to crash the application...
UBUNTU-CVE-2020-27772
A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int. This would most likely lead to an impact to application availability, but could...
UBUNTU-CVE-2020-27762
A flaw was found in ImageMagick in coders/hdr.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char. This would most likely lead to an impact to application availability, but could...
CVE-2020-25665
A flaw was found in the PALM image coder at coders/palm.c where it makes an improper call to AcquireQuantumMemory in the WritePALMImage routine because it needs to be offset by 256. This issue causes an out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to...