ImageMagick (SUSE:Linux Enterprise Software Development Kit 12 SP1) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Software Development Kit 12 SP1 package ImageMagick, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2016-7996 — CVSS 9.8 (critical): Heap-based buffer overflow in the WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to have unspecified impact…
CVE-2014-9826 — CVSS 9.8 (critical): ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.
CVE-2016-5841 — CVSS 9.8 (critical): Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation…
CVE-2016-5691 — CVSS 9.8 (critical): The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack…
CVE-2016-5690 — CVSS 9.8 (critical): The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified…
CVE-2016-5689 — CVSS 9.8 (critical): The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack…
CVE-2017-5511 — CVSS 9.8 (critical): coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based…
CVE-2014-9841 — CVSS 9.8 (critical): The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors…
CVE-2016-5687 — CVSS 9.8 (critical): The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have…
CVE-2014-9843 — CVSS 9.8 (critical): The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.
CVE-2016-5118 — CVSS 9.8 (critical): The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a |…
CVE-2016-4564 — CVSS 9.8 (critical): The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in…
CVE-2014-9846 — CVSS 9.8 (critical): Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.
CVE-2014-9852 — CVSS 9.8 (critical): distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact…
CVE-2016-10145 — CVSS 9.8 (critical): Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.
CVE-2016-10144 — CVSS 9.8 (critical): coders/ipl.c in ImageMagick allows remote attackers to have unspecific impact by leveraging a missing malloc check.
CVE-2016-6520 — CVSS 9.1 (critical): Buffer overflow in MagickCore/enhance.c in ImageMagick before 7.0.2-7 allows remote attackers to have unspecified impact via vectors…
CVE-2016-8862 — CVSS 8.8 (high): The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact…
CVE-2014-9828 — CVSS 8.8 (high): coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.
CVE-2016-4562 — CVSS 8.8 (high): The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain…
CVE-2016-8866 — CVSS 8.8 (high): The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified…
CVE-2016-8677 — CVSS 8.8 (high): The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact…
CVE-2016-4563 — CVSS 8.8 (high): The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship…
CVE-2014-9830 — CVSS 8.8 (high): coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
CVE-2016-6491 — CVSS 8.8 (high): Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in ImageMagick before 6.9.5-4 and 7.x before 7.0.2-6 allows remote…
CVE-2014-9831 — CVSS 8.8 (high): coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.
CVE-2016-5688 — CVSS 8.1 (high): The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have…
CVE-2016-10064 — CVSS 7.8 (high): Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or…
CVE-2016-10063 — CVSS 7.8 (high): Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or…
CVE-2016-10059 — CVSS 7.8 (high): Buffer overflow in coders/tiff.c in ImageMagick before 6.9.4-1 allows remote attackers to cause a denial of service (application crash) or…
CVE-2016-10052 — CVSS 7.8 (high): Buffer overflow in the WriteProfile function in coders/jpeg.c in ImageMagick before 6.9.5-6 allows remote attackers to cause a denial of…
CVE-2016-10051 — CVSS 7.8 (high): Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial…
CVE-2016-10050 — CVSS 7.8 (high): Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of…
CVE-2016-10049 — CVSS 7.8 (high): Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of…
CVE-2016-8683 — CVSS 7.8 (high): The ReadPCXImage function in coders/pcx.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted image…
CVE-2016-8707 — CVSS 7.8 (high): An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility. A crafted TIFF…
CVE-2014-9817 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.
CVE-2014-9819 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different…
CVE-2014-9820 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.
CVE-2014-9822 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.
CVE-2014-9821 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
CVE-2014-9823 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different…
CVE-2014-9824 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different…
CVE-2014-9825 — CVSS 7.8 (high): Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different…
CVE-2016-10065 — CVSS 7.8 (high): The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application…
CVE-2017-5510 — CVSS 7.8 (high): coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds…
CVE-2017-5506 — CVSS 7.8 (high): Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVE-2016-8684 — CVSS 7.8 (high): The MagickMalloc function in magick/memory.c in GraphicsMagick 1.3.25 allows remote attackers to have unspecified impact via a crafted…
CVE-2014-9842 — CVSS 7.5 (high): Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service…
CVE-2014-9839 — CVSS 7.5 (high): magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).
CVE-2014-9848 — CVSS 7.5 (high): Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).
CVE-2014-9850 — CVSS 7.5 (high): Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).
CVE-2014-9851 — CVSS 7.5 (high): ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).
CVE-2014-9854 — CVSS 7.5 (high): coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the…
CVE-2015-8895 — CVSS 7.5 (high): Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash)…
CVE-2016-10048 — CVSS 7.5 (high): Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via…
CVE-2016-10146 — CVSS 7.5 (high): Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory…
CVE-2016-5842 — CVSS 7.5 (high): MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving…
CVE-2016-6823 — CVSS 7.5 (high): Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (crash) via crafted…
CVE-2016-7539 — CVSS 7.5 (high): Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via…
CVE-2016-7800 — CVSS 7.5 (high): Integer underflow in the parse8BIM function in coders/meta.c in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial…
CVE-2016-7997 — CVSS 7.5 (high): The WPG format reader in GraphicsMagick 1.3.25 and earlier allows remote attackers to cause a denial of service (assertion failure and…
CVE-2016-8682 — CVSS 7.5 (high): The ReadSCTImage function in coders/sct.c in GraphicsMagick 1.3.25 allows remote attackers to cause a denial of service (out-of-bounds…
CVE-2017-5507 — CVSS 7.5 (high): Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service…
CVE-2016-7799 — CVSS 6.5 (medium): MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted…
CVE-2015-8901 — CVSS 6.5 (medium): ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.
CVE-2014-9829 — CVSS 6.5 (medium): coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.
CVE-2016-9559 — CVSS 6.5 (medium): coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a…
CVE-2016-7101 — CVSS 6.5 (medium): The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large row…
CVE-2016-7513 — CVSS 6.5 (medium): Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified…
CVE-2016-7514 — CVSS 6.5 (medium): The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read)…
CVE-2016-7515 — CVSS 6.5 (medium): The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via…
CVE-2016-7516 — CVSS 6.5 (medium): The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7517 — CVSS 6.5 (medium): The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7518 — CVSS 6.5 (medium): The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7519 — CVSS 6.5 (medium): The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7520 — CVSS 6.5 (medium): Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7521 — CVSS 6.5 (medium): Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7522 — CVSS 6.5 (medium): The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read)…
CVE-2016-7523 — CVSS 6.5 (medium): coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVE-2016-7524 — CVSS 6.5 (medium): coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVE-2016-7525 — CVSS 6.5 (medium): Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7526 — CVSS 6.5 (medium): coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVE-2016-7527 — CVSS 6.5 (medium): coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.
CVE-2016-7528 — CVSS 6.5 (medium): The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a…
CVE-2016-7529 — CVSS 6.5 (medium): coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.
CVE-2016-7530 — CVSS 6.5 (medium): The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write)…
CVE-2016-7531 — CVSS 6.5 (medium): MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.
CVE-2016-7532 — CVSS 6.5 (medium): coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.
CVE-2016-7533 — CVSS 6.5 (medium): The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…
CVE-2016-7534 — CVSS 6.5 (medium): The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.
CVE-2016-7535 — CVSS 6.5 (medium): coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file.
CVE-2016-7537 — CVSS 6.5 (medium): MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.
CVE-2016-7538 — CVSS 6.5 (medium): coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.
CVE-2016-7540 — CVSS 6.5 (medium): coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image…
CVE-2015-8959 — CVSS 6.5 (medium): coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS…
CVE-2015-8958 — CVSS 6.5 (medium): coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application…
CVE-2015-8957 — CVSS 6.5 (medium): Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted…
CVE-2015-8903 — CVSS 6.5 (medium): The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service…
CVE-2015-8902 — CVSS 6.5 (medium): The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service…
CVE-2016-10060 — CVSS 6.5 (medium): The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc…
CVE-2016-10061 — CVSS 6.5 (medium): The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which…
CVE-2015-8896 — CVSS 6.5 (medium): Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application…
CVE-2014-9907 — CVSS 6.5 (medium): coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file.
CVE-2016-5010 — CVSS 6.5 (medium): coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF…
CVE-2014-9837 — CVSS 6.5 (medium): coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.
CVE-2014-9814 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.
CVE-2015-8898 — CVSS 5.5 (medium): The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL…
CVE-2016-10068 — CVSS 5.5 (medium): The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application…
CVE-2016-10069 — CVSS 5.5 (medium): coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an…
CVE-2016-10070 — CVSS 5.5 (medium): Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a…
CVE-2016-10071 — CVSS 5.5 (medium): coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash)…
CVE-2015-8897 — CVSS 5.5 (medium): The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service…
CVE-2014-9807 — CVSS 5.5 (medium): The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.
CVE-2016-9556 — CVSS 5.5 (medium): The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service…
CVE-2015-8894 — CVSS 5.5 (medium): Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application…
CVE-2015-8900 — CVSS 5.5 (medium): The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop)…
CVE-2016-3717 — CVSS 5.5 (medium): The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image.
CVE-2014-9813 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.
CVE-2014-9853 — CVSS 5.5 (medium): Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.
CVE-2014-9845 — CVSS 5.5 (medium): The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib…
CVE-2014-9812 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.
CVE-2014-9844 — CVSS 5.5 (medium): The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read)…
CVE-2014-9805 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file.
CVE-2014-9840 — CVSS 5.5 (medium): ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.
CVE-2014-9838 — CVSS 5.5 (medium): magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).
CVE-2014-9811 — CVSS 5.5 (medium): The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a…
CVE-2014-9810 — CVSS 5.5 (medium): The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a…
CVE-2016-10046 — CVSS 5.5 (medium): Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a…
CVE-2014-9818 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.
CVE-2014-9816 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.
CVE-2016-9773 — CVSS 5.5 (medium): Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to…
CVE-2014-9808 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.
CVE-2014-9809 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.
CVE-2016-10062 — CVSS 5.5 (medium): The ReadGROUP4Image function in coders/tiff.c in ImageMagick does not check the return value of the fwrite function, which allows remote…
CVE-2014-9806 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.
CVE-2014-9815 — CVSS 5.5 (medium): ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.
CVE-2017-5508 — CVSS 5.5 (medium): Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to…
CVE-2016-3716 — CVSS 3.3 (low): The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image.