Imagemagick : Security Vulnerabilities, CVEs, (Memory corruption) CVSS score >= 9
In ImageMagick 7.0.9-7 Q16, there is a use-after-free in the function MngInfoDiscardObject of coders/png.c, related to ReadOneMNGImage.
Max CVSS
9.8
EPSS Score
0.47%
Published
2019-12-24
Updated
2020-01-02
In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer overflow in the function WriteSGIImage of coders/sgi.c.
Max CVSS
9.8
EPSS Score
0.93%
Published
2019-12-24
Updated
2022-10-31
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c.
Max CVSS
9.8
EPSS Score
0.14%
Published
2018-09-01
Updated
2018-10-25
In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.
Max CVSS
9.8
EPSS Score
0.14%
Published
2018-09-01
Updated
2018-10-25
The ReadMATImageV4 function in coders/mat.c in ImageMagick 7.0.8-7 uses an uninitialized variable, leading to memory corruption.
Max CVSS
9.8
EPSS Score
0.62%
Published
2018-07-23
Updated
2020-08-24
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a program-lookup result is not checked, related to CacheOpenCLKernel.
Max CVSS
9.8
EPSS Score
0.51%
Published
2018-03-01
Updated
2020-09-08
In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function BenchmarkOpenCLDevices in MagickCore/opencl.c because a memory allocation result is not checked.
Max CVSS
9.8
EPSS Score
0.23%
Published
2018-03-01
Updated
2018-03-16
ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a use-after-free in Magick::Image::read in Magick++/lib/Image.cpp.
Max CVSS
9.8
EPSS Score
1.39%
Published
2017-12-11
Updated
2020-10-28
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.
Max CVSS
9.8
EPSS Score
0.96%
Published
2017-09-21
Updated
2020-09-08
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.
Max CVSS
9.8
EPSS Score
0.70%
Published
2017-09-21
Updated
2020-09-08
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.
Max CVSS
9.8
EPSS Score
0.70%
Published
2017-09-21
Updated
2020-09-08
ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.
Max CVSS
9.8
EPSS Score
0.70%
Published
2017-09-18
Updated
2020-09-08
Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation fault) or possibly execute arbitrary code via vectors involving the offset variable.
Max CVSS
9.8
EPSS Score
9.69%
Published
2016-12-13
Updated
2016-12-15
13 vulnerabilities found