Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
graphicsmagick vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2017-14103
The ReadJNGImage and ReadOneJNGImage functions in coders/png.c in GraphicsMagick 1.3.26 do not properly manage image pointers after certain error conditions, which allows remote malicious users to conduct use-after-free attacks via a crafted file, related to a ReadMNGImage out-of...
Graphicsmagick Graphicsmagick 1.3.26
7.5
CVSSv3
CVE-2017-11102
The ReadOneJNGImage function in coders/png.c in GraphicsMagick 1.3.26 allows remote malicious users to cause a denial of service (application crash) during JNG reading via a zero-length color_image data structure.
Graphicsmagick Graphicsmagick 1.3.26
5.5
CVSSv3
CVE-2017-11140
The ReadJPEGImage function in coders/jpeg.c in GraphicsMagick 1.3.26 creates a pixel cache before a successful read of a scanline, which allows remote malicious users to cause a denial of service (resource consumption) via crafted JPEG files.
Graphicsmagick Graphicsmagick 1.3.26
8.8
CVSSv3
CVE-2017-11403
The ReadMNGImage function in coders/png.c in GraphicsMagick 1.3.26 has an out-of-order CloseBlob call, resulting in a use-after-free via a crafted file.
Graphicsmagick Graphicsmagick 1.3.26
NA
CVE-2012-3438
The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote malicious users to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation.
Graphicsmagick Graphicsmagick 1.3.16
8.8
CVSSv3
CVE-2017-16545
The ReadWPGImage function in coders/wpg.c in GraphicsMagick 1.3.26 does not properly validate colormapped images, which allows remote malicious users to cause a denial of service (ImportIndexQuantumType invalid write and application crash) or possibly have unspecified other impac...
Graphicsmagick Graphicsmagick 1.3.26
8.8
CVSSv3
CVE-2017-16547
The DrawImage function in magick/render.c in GraphicsMagick 1.3.26 does not properly look for pop keywords that are associated with push keywords, which allows remote malicious users to cause a denial of service (negative strncpy and application crash) or possibly have unspecifie...
Graphicsmagick Graphicsmagick 1.3.26
5.5
CVSSv3
CVE-2017-14649
ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash).
Graphicsmagick Graphicsmagick 1.3.26
NA
CVE-2008-1096
The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote malicious users to cause a denial of service (crash) or possibly execute arbitrary code via a crafted .xcf file that triggers an ou...
Imagemagick Graphicsmagick 1.1.10
Imagemagick Graphicsmagick 1.1.11
Imagemagick Imagemagick 6.2.8.2
Imagemagick Imagemagick 6.2.8.3
Imagemagick Graphicsmagick 1.1.12
Imagemagick Graphicsmagick 1.1.7
Imagemagick Imagemagick 6.2.8.0
Imagemagick Imagemagick 6.2.8.1
Imagemagick Graphicsmagick 1.1.8
Imagemagick Graphicsmagick 1.1.9
NA
CVE-2008-1097
Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assisted remote malicious users to cause a denial of service (crash) or possibly execute arbitrary cod...
Imagemagick Graphicsmagick 1.1.9
Imagemagick Imagemagick 6.2.8.0
Imagemagick Imagemagick 6.2.8.1
Imagemagick Graphicsmagick 1.1.10
Imagemagick Imagemagick 6.2.8.2
Imagemagick Imagemagick 6.2.8.3
Imagemagick Graphicsmagick 1.1.7
Imagemagick Graphicsmagick 1.1.8
Imagemagick Graphicsmagick 1.1.11
Imagemagick Graphicsmagick 1.1.12
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »