Lucene search
K

136 matches found

Debian CVE
Debian CVE
added 2017/12/26 8:0 p.m.18 views

CVE-2017-17915

In GraphicsMagick 1.4 snapshot-20171217 Q8, there is a heap-based buffer over-read in ReadMNGImage in coders/png.c, related to accessing one byte before testing whether a limit has been reached...

8.8CVSS9.3AI score0.01827EPSS
Exploits0
CVE
CVE
added 2017/12/26 8:0 p.m.86 views

CVE-2017-17915

CVE-2017-17915 affects GraphicsMagick (notably the GraphicsMagick 1.4 snapshot-20171217 Q8) where a heap-based buffer over-read occurs in ReadMNGImage (coders/png.c) due to accessing one byte before testing a limit. This aligns with multiple advisories noting GraphicsMagick vulnerabilities and CV...

8.8CVSS9AI score0.01827EPSS
Exploits0References6Affected Software1
Amazon
Amazon
added 2017/09/13 12:0 a.m.53 views

Medium: GraphicsMagick

Issue Overview: The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 has an out-of-order CloseBlob call, resulting in a use-after-free via a crafted file. CVE-2017-1000061 Affected Packages: GraphicsMagick Issue Correction: Run yum update GraphicsMagick or yum update --advisory...

8.8CVSS7.2AI score0.2831EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2017/09/01 1:29 p.m.32 views

CVE-2017-14103

The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call...

8.8CVSS6.9AI score0.30248EPSS
Exploits0References5
NVD
NVD
added 2017/09/01 1:29 p.m.28 views

CVE-2017-14103

The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call...

8.8CVSS7.9AI score0.30248EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2017/09/01 1:0 p.m.61 views

CVE-2017-14103

The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote attackers to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of-order CloseBlob call...

8.8CVSS8.6AI score0.30248EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2017/09/01 12:0 a.m.36 views

Debian DLA-1082-1 : graphicsmagick security update

CVE-2017-13776 CVE-2017-13777 denial of service issue in ReadXBMImage CVE-2017-12935 The ReadMNGImage function in coders/png.c mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c. CVE-2017-12936 The ReadWMFImage function in...

8.8CVSS7.1AI score0.25065EPSS
Exploits1References10
CNVD
CNVD
added 2017/08/24 12:0 a.m.2 views

Unspecified Vulnerability in GraphicsMagick

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'ReadMNGImage' function in the coders/png.c file in GraphicsMagick version 1.3.26. No details of the vulnerability are...

8.8CVSS8.5AI score0.01537EPSS
Exploits0References1
Prion
Prion
added 2017/08/23 5:29 p.m.24 views

Design/Logic Flaw

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

6.8CVSS8.5AI score0.01537EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2017/08/23 5:29 p.m.20 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS8.6AI score0.01537EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2017/08/23 5:29 p.m.45 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS6.8AI score0.01537EPSS
Exploits0References4
OSV
OSV
added 2017/08/23 5:29 p.m.7 views

UBUNTU-CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS6.7AI score0.01537EPSS
Exploits0References5
OSV
OSV
added 2017/08/23 5:29 p.m.10 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS8.6AI score
Exploits0References2
OSV
OSV
added 2017/08/23 5:29 p.m.2 views

DEBIAN-CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS6.6AI score0.01537EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/08/23 5:0 p.m.26 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.5AI score0.01537EPSS
Exploits0References2
CVE
CVE
added 2017/08/23 5:0 p.m.98 views

CVE-2017-13147

GraphicsMagick 1.3.26 is affected by CVE-2017-13147 in ReadMNGImage (coders/png.c) where an allocation failure can occur when a small MNG file contains a MEND chunk with a large length. This vulnerability is described in the CVE entry for GraphicsMagick and is associated with denial of service ri...

8.8CVSS8.4AI score0.01537EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2017/08/23 5:0 p.m.32 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS8.7AI score0.01537EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2017/08/23 5:0 p.m.52 views

CVE-2017-13147

In GraphicsMagick 1.3.26, an allocation failure vulnerability was found in the function ReadMNGImage in coders/png.c when a small MNG file has a MEND chunk with a large length value...

8.8CVSS8.6AI score0.01537EPSS
Exploits0
CNVD
CNVD
added 2017/08/21 12:0 a.m.3 views

GraphicsMagick 'ReadMNGImage' function invalid memory read vulnerability

GraphicsMagick is a simple set of image processing tools. The tool provides resizing, rotating, highlighting and other functions to images. A security vulnerability exists in the 'ReadMNGImage' function in the coders/png.c file in GraphicsMagick version 1.3.26, which stems from the program not...

8.8CVSS8.3AI score0.01875EPSS
Exploits0References1
Prion
Prion
added 2017/08/18 12:29 p.m.21 views

Design/Logic Flaw

The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c...

6.8CVSS8.4AI score0.01875EPSS
Exploits0References7Affected Software2
Rows per page
Query Builder