Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2016-7800
Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and previous versions allows remote malicious users to cause a denial of service (application crash) via a crafted 8BIM chunk, which triggers a heap-based buffer overflow.
Graphicsmagick Graphicsmagick
Opensuse Leap 42.1
Opensuse Opensuse 13.2
Debian Debian Linux 8.0
6.8
CVSSv2
CVE-2019-11506
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an malicious user to cause a denial of service or possibly have unspecified other impact via a crafted image fil...
Graphicsmagick Graphicsmagick 1.3.31
Graphicsmagick Graphicsmagick 1.3.30
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
5
CVSSv2
CVE-2020-12672
GraphicsMagick up to and including 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
7.5
CVSSv2
CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote malicious users to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
5
CVSSv2
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote malicious users to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
6.8
CVSSv2
CVE-2018-6799
The AcquireCacheNexus function in magick/pixel_cache.c in GraphicsMagick prior to 1.3.28 allows remote malicious users to cause a denial of service (heap overwrite) or possibly have unspecified other impact via a crafted image file, because a pixel staging area is not used.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2017-17501
WriteOnePNGImage in coders/png.c in GraphicsMagick 1.3.26 has a heap-based buffer over-read via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
6.8
CVSSv2
CVE-2017-17503
ReadGRAYImage in coders/gray.c in GraphicsMagick 1.3.26 has a magick/import.c ImportGrayQuantumType heap-based buffer over-read via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
4.3
CVSSv2
CVE-2018-5685
In GraphicsMagick 1.3.27, there is an infinite loop and application hang in the ReadBMPImage function (coders/bmp.c). Remote attackers could leverage this vulnerability to cause a denial of service via an image file with a crafted bit-field mask value.
Graphicsmagick Graphicsmagick 1.3.27
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
4.3
CVSSv2
CVE-2017-18229
An issue exists in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows malicious users to cause a denial of service via a crafted file, because file size is not properly used to restrict scanline, strip...
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 9.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »