CVE-2017-18027
https://notcve.org/view.php?id=CVE-2017-18027
In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attackers to cause a denial of service via a crafted file. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.7-1 Q16 en la función ReadMATImage en coders/mat.c. Esta vulnerabilidad permite que los atacantes remotos provoquen una denegación de servicio mediante un archivo manipulado. • http://www.securityfocus.com/bid/102527 https://github.com/ImageMagick/ImageMagick/issues/734 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-5357
https://notcve.org/view.php?id=CVE-2018-5357
ImageMagick 7.0.7-22 Q16 has memory leaks in the ReadDCMImage function in coders/dcm.c. ImageMagick 7.0.7-22 Q16 tiene fugas de memoria en la función ReadDCMImage en coders/dcm.c. • http://www.securityfocus.com/bid/102497 https://github.com/ImageMagick/ImageMagick/issues/941 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-5358
https://notcve.org/view.php?id=CVE-2018-5358
ImageMagick 7.0.7-22 Q16 has memory leaks in the EncodeImageAttributes function in coders/json.c, as demonstrated by the ReadPSDLayersInternal function in coders/psd.c. ImageMagick 7.0.7-22 Q16 tiene fugas de memoria en la función EncodeImageAttributes en coders/json.c, tal y como demuestra la función ReadPSDLayersInternal en coders/psd.c. • https://github.com/ImageMagick/ImageMagick/issues/939 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-5248
https://notcve.org/view.php?id=CVE-2018-5248
In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixel_decode function. En ImageMagick 7.0.7-17 Q16, hay una sobrelectura de búfer basada en memoria dinámica (heap) en la función ReadSIXELImage en coders/sixel.c, relacionada con la función sixel_decode. • http://www.securityfocus.com/bid/102431 https://github.com/ImageMagick/ImageMagick/issues/927 https://usn.ubuntu.com/3681-1 https://www.debian.org/security/2018/dsa-4204 https://www.debian.org/security/2018/dsa-4245 • CWE-125: Out-of-bounds Read •
CVE-2017-18022
https://notcve.org/view.php?id=CVE-2017-18022
In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c. ImageMagick 7.0.7-12 Q16 tiene una fuga de memoria en MontageImageCommand en MagickWand/montage.c. • http://www.securityfocus.com/bid/102437 https://github.com/ImageMagick/ImageMagick/issues/904 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •