Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2017-15218

Published: 10/10/2017 Updated: 03/10/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 6.5 | Impact Score: 3.6 | Exploitability Score: 2.8
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Imagemagick

Vulnerability Summary

ImageMagick 7.0.7-2 has a memory leak in ReadOneJNGImage in coders/png.c.

Vulnerable Product Search on Vulmon Subscribe to Product

imagemagick imagemagick 7.0.7-2

canonical ubuntu linux 17.10

canonical ubuntu linux 16.04

canonical ubuntu linux 18.04

canonical ubuntu linux 14.04

Vendor Advisories

Ubuntu Security Notice: imagemagick vulnerabilities
Several security issues were fixed in ImageMagick ...
Red Hat: CVE-2017-15218
ImageMagick 707-2 has a memory leak in ReadOneJNGImage in coders/pngc ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14682: Heap buffer overflow in GetNextToken()
Debian Bug report logs - #876488 imagemagick: CVE-2017-14682: Heap buffer overflow in GetNextToken() Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 22 Sep 2017 18:24:0 ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-17681: CPU exhaustion in ReadPSDChannelZip
Debian Bug report logs - #885941 imagemagick: CVE-2017-17681: CPU exhaustion in ReadPSDChannelZip Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 31 Dec 2017 16:21:01 U ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12692
Debian Bug report logs - #875339 imagemagick: CVE-2017-12692 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 10 Sep 2017 19:09:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14624: NULL pointer dereference flaw in PostscriptDelegateMessage in coders/ps.c
Debian Bug report logs - #877354 imagemagick: CVE-2017-14624: NULL pointer dereference flaw in PostscriptDelegateMessage in coders/psc Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg&g ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12693
Debian Bug report logs - #875341 imagemagick: CVE-2017-12693 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 10 Sep 2017 19:09:07 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14607
Debian Bug report logs - #878527 imagemagick: CVE-2017-14607 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 11:57:02 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14224: Heap buffer overflow in WritePCXImage
Debian Bug report logs - #876097 imagemagick: CVE-2017-14224: Heap buffer overflow in WritePCXImage Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 12:33:01 ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-16546
Debian Bug report logs - #881392 imagemagick: CVE-2017-16546 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 11 Nov 2017 09:03:02 UTC Severity: grave Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-17914
Debian Bug report logs - #886584 imagemagick: CVE-2017-17914 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 7 Jan 2018 20:54:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14249
Debian Bug report logs - #876099 imagemagick: CVE-2017-14249 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 13:03:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: CVE-2017-12877
Debian Bug report logs - #872373 CVE-2017-12877 Package: imagemagick; Maintainer for imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Source for imagemagick is src:imagemagick (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Wed, 16 Aug 2017 21:12:01 ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14172
Debian Bug report logs - #875506 imagemagick: CVE-2017-14172 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 11 Sep 2017 20:06:02 UTC Severity: normal Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14626
Debian Bug report logs - #878524 imagemagick: CVE-2017-14626 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 11:42:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14174
Debian Bug report logs - #875503 imagemagick: CVE-2017-14174 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 11 Sep 2017 20:03:01 UTC Severity: normal Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12983
Debian Bug report logs - #873134 imagemagick: CVE-2017-12983 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 Aug 2017 19:27:01 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13768
Debian Bug report logs - #875352 imagemagick: CVE-2017-13768 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 10 Sep 2017 20:21:05 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13133
Debian Bug report logs - #873100 imagemagick: CVE-2017-13133 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 Aug 2017 15:09:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-15281
Debian Bug report logs - #878579 imagemagick: CVE-2017-15281 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 18:51:05 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14505
Debian Bug report logs - #878545 imagemagick: CVE-2017-14505 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 13:24:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12875
Debian Bug report logs - #873871 imagemagick: CVE-2017-12875 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 31 Aug 2017 19:03:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12140
Debian Bug report logs - #873059 imagemagick: CVE-2017-12140 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 Aug 2017 07:09:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-1000445
Debian Bug report logs - #886281 imagemagick: CVE-2017-1000445 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Wed, 3 Jan 2018 19:48:02 UTC Severity: important Tags: confi ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14400
Debian Bug report logs - #878546 imagemagick: CVE-2017-14400 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 13:30:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: CVE-2017-17499
Debian Bug report logs - #885339 CVE-2017-17499 Package: imagemagick; Maintainer for imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Source for imagemagick is src:imagemagick (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Tue, 26 Dec 2017 12:51:01 ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14989
Debian Bug report logs - #878562 imagemagick: CVE-2017-14989 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 16:51:05 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13134
Debian Bug report logs - #873099 imagemagick: CVE-2017-13134 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 Aug 2017 14:57:02 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: CVE-2017-17504
Debian Bug report logs - #885340 CVE-2017-17504 Package: imagemagick; Maintainer for imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Source for imagemagick is src:imagemagick (PTS, buildd, popcon) Reported by: Moritz Muehlenhoff <jmm@debianorg> Date: Tue, 26 Dec 2017 12:51:05 ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14684: memory leak in ResizeMagickMemory
Debian Bug report logs - #876487 imagemagick: CVE-2017-14684: memory leak in ResizeMagickMemory Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Fri, 22 Sep 2017 18:21:05 UTC ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12674
Debian Bug report logs - #872609 imagemagick: CVE-2017-12674 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 19 Aug 2017 08:42:02 UTC Severity: normal Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14741
Debian Bug report logs - #878548 imagemagick: CVE-2017-14741 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 13:42:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14625: NULL pointer dereference flaw in sixel_output_create in coders/sixel.c
Debian Bug report logs - #877355 imagemagick: CVE-2017-14625: NULL pointer dereference flaw in sixel_output_create in coders/sixelc Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-15015
Debian Bug report logs - #878555 imagemagick: CVE-2017-15015 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 15:33:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13758
Debian Bug report logs - #878508 imagemagick: CVE-2017-13758 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 09:03:02 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-12691
Debian Bug report logs - #875338 imagemagick: CVE-2017-12691 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 10 Sep 2017 19:06:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14532
Debian Bug report logs - #878541 imagemagick: CVE-2017-14532 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 12:57:05 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14175
Debian Bug report logs - #875502 imagemagick: CVE-2017-14175 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 11 Sep 2017 20:00:01 UTC Severity: normal Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14739
Debian Bug report logs - #878547 imagemagick: CVE-2017-14739 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 13:33:02 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2018-5248
Debian Bug report logs - #886588 imagemagick: CVE-2018-5248 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 7 Jan 2018 21:15:02 UTC Severity: important Tags: confirme ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14173
Debian Bug report logs - #875504 imagemagick: CVE-2017-14173 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 11 Sep 2017 20:03:05 UTC Severity: normal Tags: confirmed, ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13769
Debian Bug report logs - #878507 imagemagick: CVE-2017-13769 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 08:57:02 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-17879: heap-buffer-overflow in ReadOneMNGImage
Debian Bug report logs - #885125 imagemagick: CVE-2017-17879: heap-buffer-overflow in ReadOneMNGImage Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 24 Dec 2017 09:45: ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-15277
Debian Bug report logs - #878578 imagemagick: CVE-2017-15277 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 18:51:02 UTC Severity: serious Tags: confirmed ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14060
Debian Bug report logs - #878506 imagemagick: CVE-2017-14060 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 08:54:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-15017
Debian Bug report logs - #878554 imagemagick: CVE-2017-15017 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 14 Oct 2017 15:15:01 UTC Severity: important Tags: confirm ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-17682: cpu exhaustion in ReadWPGImage
Debian Bug report logs - #885942 imagemagick: CVE-2017-17682: cpu exhaustion in ReadWPGImage Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sun, 31 Dec 2017 16:30:02 UTC S ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-14341: cpu exhaustion in ReadWPGImage
Debian Bug report logs - #876105 imagemagick: CVE-2017-14341: cpu exhaustion in ReadWPGImage Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Mon, 18 Sep 2017 13:57:04 UTC S ...
Debian CVElist Bug Report Logs: imagemagick: CVE-2017-13061
Debian Bug report logs - #873131 imagemagick: CVE-2017-13061 Package: src:imagemagick; Maintainer for src:imagemagick is ImageMagick Packaging Team <pkg-gmagick-im-team@listsaliothdebianorg>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Thu, 24 Aug 2017 19:00:02 UTC Severity: important Tags: confirm ...

References

CWE-772https://github.com/ImageMagick/ImageMagick/issues/760http://www.securityfocus.com/bid/101233https://usn.ubuntu.com/3681-1/https://nvd.nist.govhttps://usn.ubuntu.com/3681-1/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
hardcodedarbitrary codeCVE-2024-2404CVE-2024-21111CVE-2024-28627CVE-2024-4073information disclosureCVE-2024-32780CVE-2024-4040
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook