EUVD-2017-9055

Malware in sbrugna...

Arbitrary Code Execution

graphicsmagick is vulnerable to arbitrary code execution. The vulnerability exists through a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, when LocaleNCompare reads heap data beyond the allocated region...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

Heap overflow

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

CVE-2019-19949

CVE-2019-19949 affects ImageMagick (7.0.8-43 Q16 and earlier). It is a heap-based buffer over-read in WritePNGImage (coders/png.c), related to Magick_png_write_raw_profile and LocaleNCompare. Impact: attacker-supplied PNGs may cause denial of service via a crash and may potentially disclose memor...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

CVE-2019-19949

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magickpngwriterawprofile and LocaleNCompare...

imagemagick:ping_jpg_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: https://github.com/imagemagick/imagemagick.git Detailed Report: https://oss-fuzz.com/testcase?key=5651751306264576 Project: imagemagick Fuzzing Engine: libFuzzer Fuzz Target: pingjpgfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type: Use-of-uninitialized-value Crash...

graphicsmagick/coder_BMP_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5694348680232960 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderBMPfuzzer Fuzz target binary: coderBMPfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

graphicsmagick/coder_XCF_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: http://hg.code.sf.net/p/graphicsmagick/code Detailed report: https://oss-fuzz.com/testcase?key=5221421643988992 Project: graphicsmagick Fuzzer: libFuzzergraphicsmagickcoderXCFfuzzer Fuzz target binary: coderXCFfuzzer Job Type: libfuzzermsangraphicsmagick Platform Id: linux Crash Type:...

imagemagick/enhance_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4815946653892608 Project: imagemagick Fuzzer: libFuzzerimagemagickenhancefuzzer Fuzz target binary: enhancefuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

imagemagick/encoder_mpc_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5902304441008128 Project: imagemagick Fuzzer: libFuzzerimagemagickencodermpcfuzzer Fuzz target binary: encodermpcfuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

imagemagick/rotate_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5556013928284160 Project: imagemagick Fuzzer: libFuzzerimagemagickrotatefuzzer Fuzz target binary: rotatefuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

imagemagick/encoder_miff_fuzzer: Use-of-uninitialized-value in LocaleNCompare

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5393988937842688 Project: imagemagick Fuzzer: libFuzzerimagemagickencodermifffuzzer Fuzz target binary: encodermifffuzzer Job Type: libfuzzermsanimagemagick Platform Id: linux Crash Type:...

CVE-2017-17912

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region...

DEBIAN-CVE-2017-17912

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region...

Heap overflow

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadNewsProfile in coders/tiff.c, in which LocaleNCompare reads heap data beyond the allocated region...