GraphicsMagick Multiple Vulnerabilities-01 (Feb 2017) - Windows

GraphicsMagick is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

DEBIAN-CVE-2016-7449

The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...

CVE-2016-7449

The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote attackers to cause a denial of service out-of-bounds heap read via a file containing an "unterminated" string...

CVE-2016-7449

CVE-2016-7449 affects GraphicsMagick 1.3.24 where TIFFGetField() in coders/tiff.c can cause a denial of service via a malformed file containing an “unterminated” string. Connected sources confirm a remote-exploitation risk leading to an out-of-bounds heap read. CVSS details: v3 base score 7.5 (Hi...

openSUSE Security Update : GraphicsMagick (openSUSE-2016-1229)

This update for GraphicsMagick fixes the following issues : - security update : - CVE-2016-8684 boo1005123 - CVE-2016-8682 boo1005125 - CVE-2016-8683 boo1005127 - security update : - CVE-2016-7529 boo1000399 - CVE-2016-7528 boo1000434 - CVE-2016-7515 boo1000689 - CVE-2016-7446 boo999673 -...

Amazon Linux: Security Advisory (ALAS-2016-752)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Amazon Linux AMI : GraphicsMagick (ALAS-2016-752)

A possible heap overflow was discovered in the EscapeParenthesis function CVE-2016-7447. Various issues were found in the processing of SVG files in GraphicsMagick CVE-2016-7446. The TIFF reader had a bug pertaining to use of TIFFGetField when a 'count' value is returned. The bug caused a heap re...

Medium: GraphicsMagick

Issue Overview: A possible heap overflow was discovered in the EscapeParenthesis function CVE-2016-7447. Various issues were found in the processing of SVG files in GraphicsMagick CVE-2016-7446. The TIFF reader had a bug pertaining to use of TIFFGetField when a 'count' value is returned. The bug...

[SECURITY] [DLA 651-1] graphicsmagick security update

Package : graphicsmagick Version : 1.3.16-1.1+deb7u4 CVE ID : CVE-2016-7446 CVE-2016-7447 CVE-2016-7449 CVE-2016-7800 Debian Bug : Various security issues were found and fixed in graphicsmagick in Debian wheezy LTS. CVE-2016-7446 Heap buffer overflow issue in MVG/SVG rendering. CVE-2016-7447 Heap...

Updated graphicsmagick packages fix security vulnerability

A possible heap overflow of the EscapeParenthesis function CVE-2016-7447. The Utah RLE reader did not validate that header information was reasonable given the file size and so it could cause huge memory allocations and/or consume huge amounts of CPU CVE-2016-7448. The TIFF reader had a bug...