3 matches found
EUVD-2025-204295
due to insufficient sanitazation in Vega’s convert function when safeMode is enabled and the spec variable is an array. An attacker can craft a malicious Vega diagram specification that will allow them to send requests to any URL, including local file system paths, leading to exposure of sensitiv...
Vulnerability fixed in ImageMagick
A malicious party could potentially exploit the vulnerability to execute arbitrary code under a user's privileges, when using the "convert" program to convert a specially prepared file to convert it to a PDF file. ImageMagick has released updates to fix the vulnerability. fix. For more informatio...
UBUNTU-CVE-2017-11534
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the litefontmap function in coders/wmf.c...