Cristy

175 exploits Active since Dec 2016
CVE-2017-12667 WRITEUP HIGH WRITEUP
Imagemagick - Resource Leak
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in coders\mat.c.
CVSS 8.8
CVE-2017-12668 WRITEUP HIGH WRITEUP
Imagemagick - Resource Leak
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.
CVSS 8.8
CVE-2017-12669 WRITEUP HIGH WRITEUP
Imagemagick - Resource Leak
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage in coders/cals.c.
CVSS 8.8
CVE-2017-12876 WRITEUP MEDIUM WRITEUP
Imagemagick < 7.0.6-6 - Out-of-Bounds Write
Heap-based buffer overflow in enhance.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-12877 WRITEUP MEDIUM WRITEUP
Imagemagick < 6.9.9-6 - Use After Free
Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file.
CVSS 6.5
CVE-2017-13142 WRITEUP MEDIUM WRITEUP
Imagemagick < 6.9.9-0 - Improper Condition Check
In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash because there was an insufficient check for short files.
CVSS 6.5
CVE-2017-13143 WRITEUP HIGH WRITEUP
Imagemagick < 6.9.7-5 - Information Disclosure
In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in coders/mat.c uses uninitialized data, which might allow remote attackers to obtain sensitive information from process memory.
CVSS 7.5
CVE-2017-13145 WRITEUP MEDIUM WRITEUP
Imagemagick < 6.9.8-7 - Improper Input Validation
In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function in coders/jp2.c does not properly validate the channel geometry, leading to a crash.
CVSS 6.5
CVE-2017-13146 WRITEUP HIGH WRITEUP
Imagemagick < 6.9.8-4 - Resource Leak
In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memory leak in the ReadMATImage function in coders/mat.c.
CVSS 8.8
CVE-2017-13658 WRITEUP MEDIUM WRITEUP
Imagemagick < 6.9.9-2 - Reachable Assertion
In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading to a denial of service (assertion failure and application exit) in the DestroyImageInfo function in MagickCore/image.c.
CVSS 6.5
CVE-2017-14172 WRITEUP MEDIUM WRITEUP
ImageMagick 7.0.7-0 - DoS
In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "extent" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop.
CVSS 6.5
CVE-2017-14173 WRITEUP MEDIUM WRITEUP
ImageMagick 7.0.6-10 - Buffer Overflow
In the function ReadTXTImage() in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuantumRange(depth)+1" when "depth" is large, producing a smaller value than expected. As a result, an infinite loop would occur for a crafted TXT file that claims a very large "max_value" value.
CVSS 6.5
CVE-2017-14174 WRITEUP MEDIUM WRITEUP
ImageMagick 7.0.7-0 - DoS
In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "length" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop.
CVSS 6.5
CVE-2017-14175 WRITEUP MEDIUM WRITEUP
ImageMagick 7.0.6-1 Q16 - DoS
In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted XBM file, which claims large rows and columns fields in the header but does not contain sufficient backing data, is provided, the loop over the rows would consume huge CPU resources, since there is no EOF check inside the loop.
CVSS 6.5
CVE-2017-14341 WRITEUP MEDIUM WRITEUP
ImageMagick 7.0.6-6 - DoS
ImageMagick 7.0.6-6 has a large loop vulnerability in ReadWPGImage in coders/wpg.c, causing CPU exhaustion via a crafted wpg image file.
CVSS 6.5
CVE-2017-16546 WRITEUP HIGH WRITEUP
ImageMagick 7.0.7-9 - DoS
The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allows remote attackers to cause a denial of service (use of uninitialized data or invalid memory allocation) or possibly have unspecified other impact via a malformed WPG file.
CVSS 8.8
CVE-2017-5506 WRITEUP HIGH WRITEUP
Imagemagick - Double Free
Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.
CVSS 7.8
CVE-2017-5507 WRITEUP HIGH WRITEUP
Imagemagick < 6.9.7-3 - Resource Leak
Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memory consumption) via vectors involving a pixel cache.
CVSS 7.5
CVE-2017-5508 WRITEUP MEDIUM WRITEUP
Imagemagick < 6.9.7-2 - Memory Corruption
Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file.
CVSS 5.5
CVE-2017-5509 WRITEUP HIGH WRITEUP
Imagemagick < 6.9.7-4 - Out-of-Bounds Write
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVSS 7.8
CVE-2017-5510 WRITEUP HIGH WRITEUP
Imagemagick < 6.9.7-4 - Out-of-Bounds Write
coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds write.
CVSS 7.8
CVE-2017-6498 WRITEUP MEDIUM WRITEUP
Imagemagick - Improper Input Validation
An issue was discovered in ImageMagick 6.9.7. Incorrect TGA files could trigger assertion failures, thus leading to DoS.
CVSS 5.5
CVE-2017-6500 WRITEUP MEDIUM WRITEUP
Imagemagick - Out-of-Bounds Read
An issue was discovered in ImageMagick 6.9.7. A specially crafted sun file triggers a heap-based buffer over-read.
CVSS 5.5
CVE-2017-6501 WRITEUP MEDIUM WRITEUP
Imagemagick - NULL Pointer Dereference
An issue was discovered in ImageMagick 6.9.7. A specially crafted xcf file could lead to a NULL pointer dereference.
CVSS 5.5
CVE-2017-9098 WRITEUP HIGH WRITEUP
ImageMagick <7.0.5-2, GraphicsMagick <1.3.24 - Info Disclosure
ImageMagick before 7.0.5-2 and GraphicsMagick before 1.3.24 use uninitialized memory in the RLE decoder, allowing an attacker to leak sensitive information from process memory space, as demonstrated by remote attacks against ImageMagick code in a long-running server process that converts image data on behalf of multiple users. This is caused by a missing initialization step in the ReadRLEImage function in coders/rle.c.
CVSS 7.5