Denial Of Service (DoS)

imagemagick is vulnerable to denial of service. An attacker is able to cause a divide-by-zero function coders/webp.c resulting in an application crash and other unexpected behavior...

ImageMagick < 6.9.11-62, 7.0.0 < 7.0.10-62 Divide By Zero

The remote Windows host has a version of ImageMagick installed that is prior to 6.9.11-62 or 7.0.x prior to 7.0.10-62. It is, therefore, affected by following vulnerablities. - A flaw was found in ImageMagick in coders/webp.c. An attacker who submits a crafted file that is processed by ImageMagic...

CVE-2018-9135

In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c...

CVE-2018-9135

CVE-2018-9135 : In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless (coders/webp.c). The connected documents confirm this specific faulty code location and description. The reports do not disclose a fixed patch version or mitigation within the provided mater...

CVE-2018-7470

An issue was discovered in ImageMagick 7.0.7-22 Q16. The IsWEBPImageLossless function in coders/webp.c allows attackers to cause a denial of service segmentation violation via a crafted file...

CVE-2017-17913

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to an incompatibility with libwebp versions, 0.5.0 and later, that use a different structure type...

CVE-2017-17880

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBPDECODERABIVERSION check...

CVE-2017-17913

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to an incompatibility with libwebp versions, 0.5.0 and later, that use a different structure type...

CVE-2017-17880

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBPDECODERABIVERSION check...

CVE-2017-17880

In ImageMagick 7.0.7-16 Q16 x8664 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEBPDECODERABIVERSION check...

CVE-2017-17913

CVE-2017-17913 affects GraphicsMagick, specifically a stack-based buffer over-read in WriteWEBPImage (coders/webp.c) caused by incompatibility with libwebp versions 0.5.0 and later. The description in the initial document notes GraphicsMagick 1.4 snapshot-20171217 Q8 as affected. Connected docume...

ImageMagick Stack Buffer Overflow Vulnerability

ImageMagick is a software for creating, editing, and compositing images that can read, convert, and write images in many formats. A stack buffer overflow vulnerability exists in WriteWEBPImage in coders/webp.c in ImageMagick version 7.0.7-16 Q16 x8664 2017-12-21. An attacker can exploit this...

CVE-2017-14138

ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, as demonstrated by VP8 errors...

CVE-2017-14137

ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has an issue where memory allocation is excessive because it depends only on a length field in a header...