DEBIAN-CVE-2018-16749

In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of service WriteBlob assertion failure and application exit via a crafted file...

DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: DVD Photo Slideshow Professional 8.07 - Buffer Overflow SEH Exploit Author:T3jv1l Vendor Homepage:http://www.dvd-photo-slideshow.com/ Software:www.dvd-photo-slideshow.com/dpsinstall.exe Category:Local...

DVD Photo Slideshow Professional 8.07 - Buffer Overflow (SEH)

Exploit Title: DVD Photo Slideshow Professional 8.07 - Buffer Overflow SEH Date: 2018-09-06 Exploit Author:T3jv1l Vendor Homepage:http://www.dvd-photo-slideshow.com/ Software:www.dvd-photo-slideshow.com/dpsinstall.exe Category:Local Contact:https://twitter.com/T3jv1l Version: DVD Photo Slideshow...

DEBIAN-CVE-2018-16640

ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c...

UBUNTU-CVE-2018-16640

ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c...

UBUNTU-CVE-2018-14435

ImageMagick 7.0.8-4 has a memory leak in DecodeImage in coders/pcd.c...

Drupal Coder Module Deserialization RCE

The version of Drupal running on the remote web server is affected by a remote code execution vulnerability in the Coder module, specifically in file coderupgrade.run.php, due to improper validation of user-supplied input to the unserialize function. An unauthenticated, remote attacker can exploi...

graphicsmagick/coder_MAT_fuzzer: Use-of-uninitialized-value in WriteBlob

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5710480829054976 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderMATfuzzer Fuzz target binary: coderMATfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

ImageMagick Input Validation Vulnerability

ImageMagick is the United States ImageMagick Studio company's set of open source image processing software. A security vulnerability exists in the coders/tiff.c file in ImageMagick prior to version 7.0.1-10. An attacker can exploit this vulnerability to cause a denial of service application crash...

openSUSE Security Update : ImageMagick (openSUSE-2018-598)

This update for ImageMagick to version 7.0.7-34 fixes the following issues : The following security issue was fixed : - Fixed numerous use of uninitialized values, integer overflow, memory exceeded, and timeouts. The following non-security issues were fixed : - Added support for reading eXIf chun...

Security update for ImageMagick (moderate)

This update for ImageMagick to version 7.0.7-34 fixes the following issues: The following security issue was fixed: - Fixed numerous use of uninitialized values, integer overflow, memory exceeded, and timeouts. The following non-security issues were fixed: - Added support for reading eXIf chunks ...

ImageMagick WriteTIFFImage Memory Disclosure Vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory disclosure vulnerability exists in WriteTIFFImage in the coders/tiff.c file in ImageMagick version 7.0.7-28. ...

DEBIAN-CVE-2018-10804

ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c...

UBUNTU-CVE-2018-10804

ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c...

graphicsmagick/coder_DPX_fuzzer: Use-of-uninitialized-value in WriteDPXImage

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5665839926738944 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderDPXfuzzer Fuzz target binary: coderDPXfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

Allok AVI to DVD SVCD VCD Converter 4.0.1217 - Buffer Overflow (SEH) Exploit

Exploit for windows platform in category local exploits Exploit Title: Allok AVI to DVD SVCD VCD Converter 4.0.1217 - Buffer Overflow SEH Exploit Author:T3jv1l Vendor Homepage:http://www.alloksoft.com/ Software: www.alloksoft.com/allokavi2dvd.exe Category:Local Contact:https://twitter.com/T3jv1l...

Allok Video To DVD Burner 2.6.1217 Buffer Overflow

Exploit Title: Buffer OverflowSEH on Allok Video to DVD Burner2.6.1217 Date: 23.04.2018 Exploit Author:T3jv1l Vendor Homepage:http://www.alloksoft.com/ Software: www.alloksoft.com/allokdvdburner.exe Category:Local Contact:https://twitter.com/T3jv1l Version: Allok Video to DVD Burner 2.6.1217 Test...

DEBIAN-CVE-2018-9135

In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c...

UBUNTU-CVE-2018-9133

ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions coders/tiff.c, which results in a hang tens of minutes with a tiny PoC file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted tiff file...

ImageMagick 'WriteGIFImage' function memory leak vulnerability

ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A memory leak vulnerability exists in the 'WriteGIFImage' function in the coders/gif.c file in ImageMagick version...