CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2015-8959
https://notcve.org/view.php?id=CVE-2015-8959
coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file. coders/dds.c en ImageMagick en versiones anteriores a 6.9.0-4 Beta permite a atacantes remotos provocar una denegación de servicio (consumo de CPU) a través de un archivo DDS manipulado. • http://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=26861 http://www.openwall.com/lists/oss-security/2016/09/22/2 http://www.securityfocus.com/bid/93230 https://bugzilla.redhat.com/show_bug.cgi?id=1378738 https://github.com/ImageMagick/ImageMagick/commit/3ab016764c7f787829d9065440d86f5609765110 https://github.com/ImageMagick/ImageMagick/commit/9b428b7af688fe319320aed15f2b94281d1e37b4 https://github.com/ImageMagick/ImageMagick/commit/cc2a4d2ba5371d25c58763e4db2dbc1f4691c0f7 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7518
https://notcve.org/view.php?id=CVE-2016-7518
The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted SUN file. La función ReadSUNImage en coders/sun.c en ImageMagick permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de un archivo SUN manipulado. • http://www.openwall.com/lists/oss-security/2016/09/22/2 http://www.securityfocus.com/bid/93130 https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1533447 https://bugzilla.redhat.com/show_bug.cgi?id=1378745 https://github.com/ImageMagick/ImageMagick/issues/81 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7517
https://notcve.org/view.php?id=CVE-2016-7517
The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PICT file. La función EncodeImag en coders/pict.c en ImageMagick permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de un archivo PICT manipulado. • http://www.openwall.com/lists/oss-security/2016/09/22/2 http://www.securityfocus.com/bid/93128 https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1533449 https://bugzilla.redhat.com/show_bug.cgi?id=1378744 https://github.com/ImageMagick/ImageMagick/issues/80 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7521
https://notcve.org/view.php?id=CVE-2016-7521
Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file. Desbordamiento de búfer basado en memoria dinámica en coders/psd.c en ImageMagick permite a atacantes remotos provocar una denegación de servicio (lectura fuera de límites) a través de un archivo PSD manipulado. • http://www.openwall.com/lists/oss-security/2016/09/22/2 http://www.securityfocus.com/bid/93131 https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1537418 https://bugzilla.redhat.com/show_bug.cgi?id=1378748 https://github.com/ImageMagick/ImageMagick/commit/30eec879c8b446b0ea9a3bb0da1a441cc8482bc4 https://github.com/ImageMagick/ImageMagick/issues/92 • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7536
https://notcve.org/view.php?id=CVE-2016-7536
magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile. magick/profile.c en ImageMagick permite a atacantes remotos provocar una denegación de servicio (error de segmentación) a través de un perfil manipulado. • http://www.openwall.com/lists/oss-security/2016/09/22/2 http://www.securityfocus.com/bid/93225 https://bugs.launchpad.net/ubuntu/+source/imagemagick/+bug/1545367 https://bugzilla.redhat.com/show_bug.cgi?id=1378772 https://github.com/ImageMagick/ImageMagick/commit/02dadf116124cfba35d7ebd9ced3e5ad0be0f176 https://github.com/ImageMagick/ImageMagick/commit/478cce544fdf1de882d78381768458f397964453 https://github.com/ImageMagick/ImageMagick/issues/130 • CWE-20: Improper Input Validation •