
CVE-2016-8677 – Ubuntu Security Notice USN-3142-1
https://notcve.org/view.php?id=CVE-2016-8677
30 Nov 2016 — The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. La función AcquireQuantumPixels en MagickCore/quantum.c en ImageMagick en versiones anteriores a 7.0.3-1 permite a atacantes remotos tener un impacto no especificado a través de un archivo de imagen manipulado, lo que desencadena un fallo en la asignación de memoria. It was discovered that ImageMagick ... • http://lists.opensuse.org/opensuse-updates/2016-10/msg00107.html •

CVE-2016-8862 – Ubuntu Security Notice USN-3142-1
https://notcve.org/view.php?id=CVE-2016-8862
30 Nov 2016 — The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. La función AcquireMagickMemory en MagickCore/memory.c en ImageMagick en versiones anteriores a 7.0.3.3 permite a atacantes remotos tener un impacto no especificado a través de una imagen manipulada, lo que desencadena un fallo de asignación de memoria. It was discovered that ImageMagick incorrectly handled ce... • http://www.debian.org/security/2016/dsa-3726 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-9833 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9833
21 Nov 2016 — Heap overflow in ImageMagick 6.8.9-9 via a crafted psd file. Desbordamiento de memoria dinámica en ImageMagick 6.8.9-9 a través de un archivo psd manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program. • http://www.openwall.com/lists/oss-security/2014/12/24/1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-9837 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9837
21 Nov 2016 — coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file. coders/pnm.c en ImageMagick 6.9.0-1 Beta y anterior permite a atacantes remotos provocar una denegación de servicio (caída) a través de un archivo png manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploi... • http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26682 • CWE-125: Out-of-bounds Read •

CVE-2014-9845 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9845
21 Nov 2016 — The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file. La función ReadDIBImage en coders/dib.c en ImageMagick permite a atacantes provocar una denegación de servicio (caída) a través de un archivo dib corrompido. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could explo... • http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00000.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-9844 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9844
21 Nov 2016 — The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. La función ReadRLEImage en coders/rle.c en ImageMagick 6.8.9.9 permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de un archivo de imagen manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked i... • http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00000.html • CWE-125: Out-of-bounds Read •

CVE-2014-9838 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9838
21 Nov 2016 — magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash). magick/cache.c en ImageMagick 6.8.9-9 permite a atacantes remotos provocar una denegación de servicio (caída). It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the us... • http://www.openwall.com/lists/oss-security/2016/06/02/13 •

CVE-2014-9834 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9834
21 Nov 2016 — Heap overflow in ImageMagick 6.8.9-9 via a crafted pict file. Desbordamiento de memoria dinámica en ImageMagick 6.8.9-9 a través de un archivo pict manipulado. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program. • http://www.openwall.com/lists/oss-security/2014/12/24/1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-9839 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9839
21 Nov 2016 — magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access). magick/colormap-private.h en ImageMagick 6.8.9-9 permite a atacantes remotos provocar una denegación de servicio (acceso fuera de límites). It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service... • http://www.openwall.com/lists/oss-security/2014/12/24/1 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2014-9843 – Ubuntu Security Notice USN-3131-1
https://notcve.org/view.php?id=CVE-2014-9843
21 Nov 2016 — The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors. La función DecodePSDPixels en coders/psd.c en ImageMagick 6.8.9.9 permite a atacantes remotos tener impacto no especificado a través de vectores desconocidos. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit ... • http://lists.opensuse.org/opensuse-security-announce/2016-07/msg00002.html • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •