SUSE-SU-2023:3186-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2023-3745: Fixed heap out of bounds read in PushCharPixel in quantum-private.h bsc1213624...

CVE-2022-1115

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service...

Heap overflow

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service...

CVE-2020-27768

In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

CVE-2020-27768

In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

ImageMagick has an unspecified vulnerability (CNVD-2021-11325)

ImageMagick is a suite of open source image processing software. The software can read, convert or write images in a variety of formats. A security vulnerability exists in ImageMagick versions prior to 7.0.9-0, which stems from an out-of-range representable value range for the unsigned int type o...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service. An integer overflow in MagickCore/quantum-private.h allows an attacker to crash the application...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service. An outside the range of representable values of type unsigned long long bug in MagickCore/quantum-private.h allows an attacker to crash the application...

PT-2019-5850 · Imagemagick +4 · Imagemagick +4

Name of the Vulnerable Software and Affected Versions: ImageMagick versions prior to 7.0.9-0 Description: The issue is related to an integer overflow in the MagickCore/quantum-private.h component of the ImageMagick console graphic editor. This allows a remote attacker to cause a denial of service...

CVE-2018-16413

ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function...

CVE-2018-16413

ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function...

CVE-2018-16413

ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the coders/psd.c ParseImageResourceBlocks function...