GraphicsMagick 1.3.26 has a segmentation violation in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11642.
Max CVSS
8.8
EPSS Score
0.37%
Published
2017-07-26
Updated
2018-10-18
GraphicsMagick 1.3.26 has a NULL pointer dereference in the WriteMAPImage() function in coders/map.c when processing a non-colormapped image, a different vulnerability than CVE-2017-11638.
Max CVSS
8.8
EPSS Score
0.40%
Published
2017-07-26
Updated
2018-10-18
The WriteOnePNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted file, because the program's actual control flow was inconsistent with its indentation. This resulted in a logging statement executing outside of a loop, and consequently using an invalid array index corresponding to the loop's exit condition.
Max CVSS
6.5
EPSS Score
0.49%
Published
2017-07-28
Updated
2018-10-18
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function ReadTIFFImage, which allows attackers to cause a denial of service.
Max CVSS
7.5
EPSS Score
0.94%
Published
2019-05-09
Updated
2020-08-19
In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of service.
Max CVSS
7.5
EPSS Score
0.94%
Published
2019-05-09
Updated
2020-09-08
The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c.
Max CVSS
8.8
EPSS Score
0.82%
Published
2017-08-18
Updated
2019-06-30
The ReadWMFImage function in coders/wmf.c in GraphicsMagick 1.3.26 has a use-after-free issue for data associated with exception reporting.
Max CVSS
8.8
EPSS Score
28.95%
Published
2017-08-18
Updated
2019-06-30
The ReadSUNImage function in coders/sun.c in GraphicsMagick 1.3.26 has a colormap heap-based buffer over-read.
Max CVSS
8.8
EPSS Score
0.88%
Published
2017-08-18
Updated
2019-10-03
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:314:12.
Max CVSS
6.5
EPSS Score
0.31%
Published
2017-08-22
Updated
2019-06-30
GraphicsMagick 1.3.26 has a heap-based buffer overflow vulnerability in the function GetStyleTokens in coders/svg.c:311:12.
Max CVSS
6.5
EPSS Score
0.38%
Published
2017-08-22
Updated
2019-06-30
GraphicsMagick 1.3.26 has a NULL pointer dereference vulnerability in the function SVGStartElement in coders/svg.c.
Max CVSS
6.5
EPSS Score
0.31%
Published
2017-08-22
Updated
2019-06-30
In GraphicsMagick 1.3.26, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c.
Max CVSS
6.5
EPSS Score
0.28%
Published
2017-08-23
Updated
2019-10-03
There are lots of memory leaks in the GMCommand function in magick/command.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.
Max CVSS
6.5
EPSS Score
0.49%
Published
2017-08-29
Updated
2019-10-03
There is an invalid free in the MagickFree function in magick/memory.c in GraphicsMagick 1.3.26 that will lead to a remote denial of service attack.
Max CVSS
6.5
EPSS Score
0.81%
Published
2017-08-29
Updated
2019-06-30
GraphicsMagick 1.3.26 has a denial of service issue in ReadJNXImage() in coders/jnx.c whereby large amounts of CPU and memory resources may be consumed although the file itself does not support the requests.
Max CVSS
7.1
EPSS Score
0.31%
Published
2017-08-30
Updated
2019-10-03
ReadPNMImage in coders/pnm.c in GraphicsMagick 1.3.26 does not ensure the correct number of colors for the XV 332 format, leading to a NULL Pointer Dereference.
Max CVSS
6.5
EPSS Score
0.40%
Published
2017-09-17
Updated
2019-06-30
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).
Max CVSS
5.5
EPSS Score
0.15%
Published
2017-09-21
Updated
2019-10-03
ReadRLEImage in coders/rle.c in GraphicsMagick 1.3.26 mishandles RLE headers that specify too few colors, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file.
Max CVSS
6.5
EPSS Score
0.72%
Published
2017-09-25
Updated
2019-10-03
ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted DICOM image, related to the ability of DCM_ReadNonNativeImages to yield an image list with zero frames.
Max CVSS
6.5
EPSS Score
0.41%
Published
2017-10-04
Updated
2019-06-30
GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (excessive memory allocation) because of an integer underflow in ReadPICTImage in coders/pict.c.
Max CVSS
7.1
EPSS Score
1.06%
Published
2017-10-04
Updated
2019-06-30
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!