CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2018-14437 – ImageMagick: memory leak in parse8BIM in coders/meta.c
https://notcve.org/view.php?id=CVE-2018-14437
20 Jul 2018 — ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. ImageMagick 7.0.8-4 tiene una fuga de memoria en parse8BIM en coders/meta.c. Due to a large number of issues discovered in GhostScript that prevent it from being used by ImageMagick safely, this update includes a default policy change that disables support for the Postscript and PDF formats in ImageMagick. This policy can be overridden if necessary by using an alternate ImageMagick policy configuration. It was discovered that several memor... • https://github.com/ImageMagick/ImageMagick/issues/1190 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-13153 – ImageMagick: memory leak in the XMagickCommand function in MagickCore/animate.c
https://notcve.org/view.php?id=CVE-2018-13153
05 Jul 2018 — In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. En ImageMagick 7.0.8-4 hay una fuga de memoria en la función XMagickCommand en MagickCore/animate.c. A memory leak was discovered in ImageMagick in the XMagickCommand function in animate.c file. An array of strings, named filelist, is allocated on the heap but not released in case the function ExpandFilenames returns an error code. ImageMagick is an image display and manipulation tool for the X Window Syst... • http://www.securityfocus.com/bid/104687 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12599 – ImageMagick: out of bounds write in ReadBMPImage and WriteBMPImage in coders/bmp.c
https://notcve.org/view.php?id=CVE-2018-12599
20 Jun 2018 — In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadBMPImage y WriteBMPImage en coders/bmp.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attack... • https://github.com/ImageMagick/ImageMagick/issues/1177 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12600 – ImageMagick: out of bounds write ReadDIBImage and WriteDIBImage in coders/dib.c
https://notcve.org/view.php?id=CVE-2018-12600
20 Jun 2018 — In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadDIBImage y WriteDIBImage en coders/dib.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. ImageMagick is an image display and manipulation tool for the X Window System that can read and write multiple image formats. Issues addressed include buffer overflow, denial of service, double fr... • https://github.com/ImageMagick/ImageMagick/issues/1178 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •