Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-11005
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a stack-based buffer overflow in the function SVGStartElement of coders/svg.c, which allows remote malicious users to cause a denial of service (application crash) or possibly have unspecified other impact via a quoted font fam...
Graphicsmagick Graphicsmagick
Opensuse Leap 42.3
Opensuse Leap 15.0
4.3
CVSSv2
CVE-2018-18544
There is a memory leak in the function WriteMSLImage of coders/msl.c in ImageMagick 7.0.8-13 Q16, and the function ProcessMSLScript of coders/msl.c in GraphicsMagick prior to 1.3.31.
Imagemagick Imagemagick 7.0.8-13
Graphicsmagick Graphicsmagick
Opensuse Leap 15.0
5
CVSSv2
CVE-2005-1739
The XWD Decoder in ImageMagick prior to 6.2.2.3, and GraphicsMagick prior to 1.1.6-r1, allows remote malicious users to cause a denial of service (infinite loop) via an image with a zero color mask.
Graphicsmagick Graphicsmagick 1.1
Graphicsmagick Graphicsmagick 1.1.3
Imagemagick Imagemagick 5.4.4.5
Imagemagick Imagemagick 5.4.7
Imagemagick Imagemagick 5.4.8
Imagemagick Imagemagick 6.0
Imagemagick Imagemagick 6.0.1
Imagemagick Imagemagick 6.0.7
Imagemagick Imagemagick 6.0.8
Imagemagick Imagemagick 6.1.7
Imagemagick Imagemagick 6.1.8
Graphicsmagick Graphicsmagick 1.1.6
Imagemagick Imagemagick 5.3.3
Imagemagick Imagemagick 5.5.4
Imagemagick Imagemagick 5.5.6
Imagemagick Imagemagick 6.0.3
Imagemagick Imagemagick 6.0.4
Imagemagick Imagemagick 6.1.2
Imagemagick Imagemagick 6.1.3
Imagemagick Imagemagick 6.2.0.7
Imagemagick Imagemagick 6.2.1
Graphicsmagick Graphicsmagick 1.0
5
CVSSv2
CVE-2016-8682
The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote malicious users to cause a denial of service (out-of-bounds read) via a crafted SCT header.
Graphicsmagick Graphicsmagick 1.3.25
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2016-8683
The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote malicious users to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."
Graphicsmagick Graphicsmagick 1.3.25
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2016-8684
The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote malicious users to have unspecified impact via a crafted image, which triggers a memory allocation failure and a "file truncation error for corrupt file."
Graphicsmagick Graphicsmagick 1.3.25
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2017-14314
Off-by-one error in the DrawImage function in magick/render.c in GraphicsMagick 1.3.26 allows remote malicious users to cause a denial of service (DrawDashPolygon heap-based buffer over-read and application crash) via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2017-14504
ReadPNMImage in coders/pnm.c in GraphicsMagick 1.3.26 does not ensure the correct number of colors for the XV 332 format, leading to a NULL Pointer Dereference.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
7.1
CVSSv2
CVE-2017-13776
GraphicsMagick 1.3.26 has a denial of service issue in ReadXBMImage() in a coders/xbm.c "Read hex image data" version!=10 case that results in the reader not returning; it would cause large amounts of CPU and memory consumption although the crafted file itself does not ...
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2017-12935
The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 mishandles large MNG images, leading to an invalid memory read in the SetImageColorCallBack function in magick/image.c.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »