Imagemagick : Security Vulnerabilities, CVEs, Published In 2022 (Denial of service)
A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.
Max CVSS
5.5
EPSS Score
0.06%
Published
2022-09-19
Updated
2022-09-21
In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. This could potentially cause a denial of service. This was fixed in upstream ImageMagick version 7.1.0-30.
Max CVSS
5.5
EPSS Score
0.05%
Published
2022-08-10
Updated
2022-08-16
A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.
Max CVSS
5.5
EPSS Score
0.11%
Published
2022-08-29
Updated
2022-09-06
A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.
Max CVSS
7.1
EPSS Score
0.06%
Published
2022-04-29
Updated
2022-05-11
A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can potentially lead to a denial of service and information disclosure.
Max CVSS
7.1
EPSS Score
0.09%
Published
2022-08-29
Updated
2022-09-01
A flaw was found in ImageMagick. The vulnerability occurs due to improper use of open functions and leads to a denial of service. This flaw allows an attacker to crash the system.
Max CVSS
5.5
EPSS Score
0.05%
Published
2022-03-23
Updated
2022-03-30
6 vulnerabilities found