Page 110 of 646 results (0.008 seconds)

CVSS: 6.5EPSS: 10%CPEs: 3EXPL: 0

MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. MagickCore/profile.c en ImageMagick en versiones anteriores a 7.0.3-2 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de un archivo manipulado. • http://www.debian.org/security/2016/dsa-3726 http://www.openwall.com/lists/oss-security/2016/10/01/4 http://www.openwall.com/lists/oss-security/2016/10/01/6 http://www.securityfocus.com/bid/93264 https://github.com/ImageMagick/ImageMagick/commit/a7bb158b7bedd1449a34432feb3a67c8f1873bfa https://github.com/ImageMagick/ImageMagick/issues/280 https://security.gentoo.org/glsa/201611-21 • CWE-125: Out-of-bounds Read •

CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0

The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. La función AcquireMagickMemory en MagickCore/memory.c en ImageMagick en versiones anteriores a 7.0.3.3 permite a atacantes remotos tener un impacto no especificado a través de una imagen manipulada, lo que desencadena un fallo de asignación de memoria. • http://www.debian.org/security/2016/dsa-3726 http://www.openwall.com/lists/oss-security/2016/10/20/2 http://www.openwall.com/lists/oss-security/2016/10/20/3 http://www.securityfocus.com/bid/93794 https://blogs.gentoo.org/ago/2016/10/17/imagemagick-memory-allocation-failure-in-acquiremagickmemory-memory-c https://bugzilla.redhat.com/show_bug.cgi?id=1387135 https://github.com/ImageMagick/ImageMagick/issues/271 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.5EPSS: 2%CPEs: 2EXPL: 0

magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file. magick/attribute.c en ImageMagick 7.0.3-2 permite a atacantes remotos provocar una denegación de servicio (uso después de liberación) a través de un archivo manipulado. • http://www.debian.org/security/2016/dsa-3726 http://www.openwall.com/lists/oss-security/2016/10/02/1 http://www.openwall.com/lists/oss-security/2016/10/02/3 http://www.securityfocus.com/bid/93271 https://github.com/ImageMagick/ImageMagick/commit/90406972f108c4da71f998601b06abdc2ac6f06e https://github.com/ImageMagick/ImageMagick/issues/281 https://security.gentoo.org/glsa/201611-21 • CWE-416: Use After Free •

CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0

The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. La función AcquireQuantumPixels en MagickCore/quantum.c en ImageMagick en versiones anteriores a 7.0.3-1 permite a atacantes remotos tener un impacto no especificado a través de un archivo de imagen manipulado, lo que desencadena un fallo en la asignación de memoria. • http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html http://www.debian.org/security/2016/dsa-3726 http://www.openwall.com/lists/oss-security/2016/10/16/1 http://www.securityfocus.com/bid/93598 https://blogs.gentoo.org/ago/2016/10/07/imagemagick-memory-allocate-failure-in-acquirequantumpixels-quantum-c https://bugzilla.redhat.com/show_bug.cgi?id=1385698 https://github.com/ImageMagick/ImageMagick/commit/6e48aa92ff4e6e95424300ecd52a9ea453c19c60 https://github.com/ImageMagick/ImageMagick/issu •

CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0

coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file. coders/wpg.c en ImageMagick permite que atacantes remotos provoquen errores no especificados empleando un archivo wpg corrupto. • http://www.openwall.com/lists/oss-security/2016/06/02/13 https://anonscm.debian.org/cgit/collab-maint/imagemagick.git/commit/?h=debian-patches/6.8.9.9-4-for-upstream&id=b68b78e2625122d9f6b6d88ba4df7e85b47b556f https://bugzilla.redhat.com/show_bug.cgi?id=1343487 • CWE-284: Improper Access Control •