CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 1CVE-2017-14325 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-14325
12 Sep 2017 — In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attackers to cause a denial of service (memory consumption in ReadMPCImage in coders/mpc.c) via a crafted file. Se ha encontrado una vulnerabilidad de fuga de memoria en ImageMagick 7.0.7-1 Q16 en la función PersistPixelCache en magick/cache.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio (consumo de memoria en ReadMPCImage en coders/mpc.c)... • http://www.securityfocus.com/bid/100874 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2017-14326 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-14326
12 Sep 2017 — In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service via a crafted file. Se ha encontrado una vulnerabilidad de fuga de memoria en ImageMagick 7.0.7-1 Q16 en la función ReadMATImage en coders/mat.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio mediante un archivo manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. I... • https://github.com/ImageMagick/ImageMagick/issues/740 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 1CVE-2017-14172 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-14172
07 Sep 2017 — In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "extent" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop. En coders/ps.c en ImageMagick 7.0.7-0 Q16, una denegación de servicio en ReadPSImage() por una falta de chequeos EOF (End of File) pod... • https://github.com/ImageMagick/ImageMagick/commit/bdbbb13f1fe9b7e2465502c500561720f7456aac • CWE-834: Excessive Iteration •
CVSS: 7.1EPSS: 0%CPEs: 7EXPL: 1CVE-2017-14174 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-14174
07 Sep 2017 — In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an EOF (End of File) check might cause huge CPU consumption. When a crafted PSD file, which claims a large "length" field in the header but does not contain sufficient backing data, is provided, the loop over "length" would consume huge CPU resources, since there is no EOF check inside the loop. En coders/psd.c en ImageMagick 7.0.7-0 Q16, una denegación de servicio en ReadPSDLayersInternal() por una falta de chequeos... • https://github.com/ImageMagick/ImageMagick/commit/04a567494786d5bb50894fc8bb8fea0cf496bea8 • CWE-834: Excessive Iteration •