CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2018-14437 – ImageMagick: memory leak in parse8BIM in coders/meta.c
https://notcve.org/view.php?id=CVE-2018-14437
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. ImageMagick 7.0.8-4 tiene una fuga de memoria en parse8BIM en coders/meta.c. • https://github.com/ImageMagick/ImageMagick/issues/1190 https://usn.ubuntu.com/3785-1 https://access.redhat.com/security/cve/CVE-2018-14437 https://bugzilla.redhat.com/show_bug.cgi?id=1609942 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-13153 – ImageMagick: memory leak in the XMagickCommand function in MagickCore/animate.c
https://notcve.org/view.php?id=CVE-2018-13153
In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. En ImageMagick 7.0.8-4 hay una fuga de memoria en la función XMagickCommand en MagickCore/animate.c. A memory leak was discovered in ImageMagick in the XMagickCommand function in animate.c file. An array of strings, named filelist, is allocated on the heap but not released in case the function ExpandFilenames returns an error code. • http://www.securityfocus.com/bid/104687 http://www.securitytracker.com/id/1041219 https://github.com/ImageMagick/ImageMagick/issues/1195 https://usn.ubuntu.com/3711-1 https://access.redhat.com/security/cve/CVE-2018-13153 https://bugzilla.redhat.com/show_bug.cgi?id=1598471 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12599 – ImageMagick: out of bounds write in ReadBMPImage and WriteBMPImage in coders/bmp.c
https://notcve.org/view.php?id=CVE-2018-12599
In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadBMPImage y WriteBMPImage en coders/bmp.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/1177 https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html https://usn.ubuntu.com/3711-1 https://www.debian.org/security/2018/dsa-4245 https://access.redhat.com/security/cve/CVE-2018-12599 https://bugzilla.redhat.com/show_bug.cgi?id=1594338 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12600 – ImageMagick: out of bounds write ReadDIBImage and WriteDIBImage in coders/dib.c
https://notcve.org/view.php?id=CVE-2018-12600
In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadDIBImage y WriteDIBImage en coders/dib.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/1178 https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html https://usn.ubuntu.com/3711-1 https://www.debian.org/security/2018/dsa-4245 https://access.redhat.com/security/cve/CVE-2018-12600 https://bugzilla.redhat.com/show_bug.cgi?id=1594339 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •