Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick graphicsmagick 1.3.30 vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2019-11506
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an malicious user to cause a denial of service or possibly have unspecified other impact via a crafted image fil...
Graphicsmagick Graphicsmagick 1.3.31
Graphicsmagick Graphicsmagick 1.3.30
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
6.5
CVSSv3
CVE-2019-11473
coders/xwd.c in GraphicsMagick 1.3.31 allows malicious users to cause a denial of service (out-of-bounds read and application crash) by crafting an XWD image file, a different vulnerability than CVE-2019-11008 and CVE-2019-11009.
Graphicsmagick Graphicsmagick 1.3.31
6.5
CVSSv3
CVE-2018-20184
In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows malicious users to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restr...
Graphicsmagick Graphicsmagick 1.4
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2018-20189
In GraphicsMagick 1.3.31, the ReadDIBImage function of coders/dib.c has a vulnerability allowing a crash and denial of service via a dib file that is crafted to appear with direct pixel values and also colormapping (which is not available beyond 8-bits/sample), and therefore lack...
Graphicsmagick Graphicsmagick 1.3.31
Debian Debian Linux 8.0
9.8
CVSSv3
CVE-2019-11005
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a quoted font fam...
Graphicsmagick Graphicsmagick
Opensuse Leap 42.3
Opensuse Leap 15.0
9.1
CVSSv3
CVE-2019-11006
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadMIFFImage of coders/miff.c, which allows malicious users to cause a denial of service or information disclosure via an RLE packet.
Graphicsmagick Graphicsmagick
Opensuse Leap 42.3
Opensuse Leap 15.0
Debian Debian Linux 8.0
8.1
CVSSv3
CVE-2019-11009
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a heap-based buffer over-read in the function ReadXWDImage of coders/xwd.c, which allows malicious users to cause a denial of service or information disclosure via a crafted image file.
Graphicsmagick Graphicsmagick
Opensuse Leap 42.3
Opensuse Leap 15.0
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2019-11010
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the function ReadMPCImage of coders/mpc.c, which allows malicious users to cause a denial of service via a crafted image file.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 42.3
Opensuse Leap 15.0
5.3
CVSSv3
CVE-2018-20185
In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows malicious users to cause a denial of service via a crafted bmp image file. This only affects GraphicsMagick installations wit...
Graphicsmagick Graphicsmagick 1.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
9.8
CVSSv3
CVE-2020-10938
GraphicsMagick prior to 1.3.35 has an integer overflow and resultant heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Opensuse Leap 15.1
Opensuse Backports Sle-15
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »