CVE-2018-18024 – ImageMagick: infinite loop in the ReadBMPImage function of the coders/bmp.c
https://notcve.org/view.php?id=CVE-2018-18024
In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted bmp file. En ImageMagick 7.0.8-13 Q16, hay un bucle infinito en la función ReadBMPImage del archivo coders/bmp.c. Los atacantes remotos pueden aprovechar esta vulnerabilidad para provocar una denegación de servicio (DoS) mediante un archivo bmp manipulado. • https://github.com/ImageMagick/ImageMagick/issues/1337 https://lists.debian.org/debian-lts-announce/2020/08/msg00030.html https://usn.ubuntu.com/4034-1 https://access.redhat.com/security/cve/CVE-2018-18024 https://bugzilla.redhat.com/show_bug.cgi?id=1637189 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVE-2018-18016 – ImageMagick: memory leak in WritePCXImage in coders/pcx.c
https://notcve.org/view.php?id=CVE-2018-18016
ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c. ImageMagick 7.0.7-28 tiene una vulnerabilidad de fuga de memoria en WritePCXImage en coders/pcx.c. • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-18016 https://github.com/ImageMagick/ImageMagick/issues/1049 https://usn.ubuntu.com/4034-1 https://access.redhat.com/security/cve/CVE-2018-18016 https://bugzilla.redhat.com/show_bug.cgi?id=1636579 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-17966 – ImageMagick: memory leak in WritePDBImage in coders/pdb.c
https://notcve.org/view.php?id=CVE-2018-17966
ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c. ImageMagick 7.0.7-28 tiene una vulnerabilidad de fuga de memoria en WritePDBImage en coders/pdb.c. • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-17966 https://github.com/ImageMagick/ImageMagick/issues/1050 https://usn.ubuntu.com/4034-1 https://access.redhat.com/security/cve/CVE-2018-17966 https://bugzilla.redhat.com/show_bug.cgi?id=1636587 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-17967 – ImageMagick: memory leak in ReadBGRImage in coders/bgr.c.
https://notcve.org/view.php?id=CVE-2018-17967
ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/bgr.c. ImageMagick 7.0.7-28 tiene una vulnerabilidad de fuga de memoria en ReadBGRImage en coders/bgr.c. • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-17967 https://github.com/ImageMagick/ImageMagick/issues/1051 https://access.redhat.com/security/cve/CVE-2018-17967 https://bugzilla.redhat.com/show_bug.cgi?id=1636590 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2018-17965
https://notcve.org/view.php?id=CVE-2018-17965
ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage in coders/sgi.c. ImageMagick 7.0.7-28 tiene una vulnerabilidad de fuga de memoria en WriteSGIImage en coders/sgi.c. • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-17965 https://github.com/ImageMagick/ImageMagick/issues/1052 https://usn.ubuntu.com/4034-1 • CWE-772: Missing Release of Resource after Effective Lifetime •