Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-11010
In GraphicsMagick 1.4 snapshot-20190322 Q8, there is a memory leak in the function ReadMPCImage of coders/mpc.c, which allows malicious users to cause a denial of service via a crafted image file.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 15.0
Opensuse Leap 42.3
8.8
CVSSv3
CVE-2019-11506
In GraphicsMagick from version 1.3.30 to 1.4 snapshot-20190403 Q8, there is a heap-based buffer overflow in the function WriteMATLABImage of coders/mat.c, which allows an malicious user to cause a denial of service or possibly have unspecified other impact via a crafted image fil...
Graphicsmagick Graphicsmagick 1.3.31
Graphicsmagick Graphicsmagick 1.3.30
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Opensuse Leap 42.3
Opensuse Leap 15.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
9.8
CVSSv3
CVE-2016-7446
Buffer overflow in the MVG and SVG rendering code in GraphicsMagick 1.3.24 allows remote malicious users to have unspecified impact via unknown vectors. Note: This vulnerability exists due to an incomplete patch for CVE-2016-2317.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2016-7449
The TIFFGetField function in coders/tiff.c in GraphicsMagick 1.3.24 allows remote malicious users to cause a denial of service (out-of-bounds heap read) via a file containing an "unterminated" string.
Graphicsmagick Graphicsmagick 1.3.24
Opensuse Leap 42.1
Debian Debian Linux 8.0
Opensuse Opensuse 13.2
7.5
CVSSv3
CVE-2020-12672
GraphicsMagick up to and including 1.3.35 has a heap-based buffer overflow in ReadMNGImage in coders/png.c.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
8.8
CVSSv3
CVE-2018-6799
The AcquireCacheNexus function in magick/pixel_cache.c in GraphicsMagick prior to 1.3.28 allows remote malicious users to cause a denial of service (heap overwrite) or possibly have unspecified other impact via a crafted image file, because a pixel staging area is not used.
Graphicsmagick Graphicsmagick
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
8.8
CVSSv3
CVE-2017-16669
coders/wpg.c in GraphicsMagick 1.3.26 allows remote malicious users to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted file, related to the AcquireCacheNexus function in magick/pixel_cache.c.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-18219
An issue exists in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows malicious users to cause a denial of service via a crafted file that triggers an attempt at a large png_pixels array allocation.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Debian Debian Linux 9.0
6.5
CVSSv3
CVE-2017-18229
An issue exists in GraphicsMagick 1.3.26. An allocation failure vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allows malicious users to cause a denial of service via a crafted file, because file size is not properly used to restrict scanline, strip...
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 9.0
Debian Debian Linux 7.0
Debian Debian Linux 8.0
6.5
CVSSv3
CVE-2017-18230
An issue exists in GraphicsMagick 1.3.26. A NULL pointer dereference vulnerability was found in the function ReadCINEONImage in coders/cineon.c, which allows malicious users to cause a denial of service via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 7.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »