19 matches found
Buffer Overflows
ImageMagick is vulnerable to buffer overflows. A remote unauthenticated attacker could cause a memory corruption vulnerability in ReadXPMImage function in coders/xpm.c...
CVE-2020-19667
Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7...
CVE-2020-19667
CVE-2020-19667: ImageMagick 7.0.10-7 contains a stack-based buffer overflow and unconditional jump in ReadXPMImage (coders/xpm.c). This CVE entry is based on the description for ImageMagick; exploitation details or mitigation are not provided in the connected documents.
CVE-2020-19667
Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7...
CVE-2020-19667
Stack-based buffer overflow and unconditional jump in ReadXPMImage in coders/xpm.c in ImageMagick 7.0.10-7...
CVE-2017-17882
In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to cause a denial of service via a crafted XPM image file...
CVE-2017-17882
Technical details (affected versions, root cause, exploit information, and patch status) for CVE-2017-17882 are not provided in the connected documents. Monitor for updates.
CVE-2014-9827
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file...
CVE-2014-9827
ImageMagick vulnerability CVE-2014-9827 affects the coders/xpm.c module. A crafted XPM file can be remotely processed, leading to an unspecified impact. The provided connected records confirm the affected component but do not specify exact impact, exploitation details, or available fixes within t...
CVE-2014-9827
coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file...
CVE-2017-11751
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service memory leak via a crafted file...
ImageMagick 'WritePICONImage' function denial of service vulnerability (CNVD-2017-19950)
ImageMagick is a set of open-source image processing software from the U.S. company ImageMagick Studio. The software can read, convert and write pictures in a variety of formats. A security vulnerability exists in the 'WritePICONImage' function in the coders/xpm.c file in ImageMagick version...
CVE-2017-11755
The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service memory leak via a crafted file that is mishandled in an AcquireSemaphoreInfo call...
CVE-2017-11751
CVE-2017-11751 entry is rejected/not used and does not represent an active vulnerability.
Heap overflow
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the GetPixelIndex function, called from the WritePICONImage function in coders/xpm.c...
CVE-2017-11540
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the GetPixelIndex function, called from the WritePICONImage function in coders/xpm.c...
CVE-2017-11540
When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the GetPixelIndex function, called from the WritePICONImage function in coders/xpm.c...
CVE-2017-11540
ImageMagick 7.0.6-1 processing a crafted file in convert can cause a heap-based buffer over-read in GetPixelIndex(), invoked from WritePICONImage in coders/xpm.c.
CVE-2005-2975
io-xpm.c in the gdk-pixbuf XPM image rendering library in GTK+ before 2.8.7 allows attackers to cause a denial of service infinite loop via a crafted XPM image with a large number of colors...