CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12673
https://notcve.org/view.php?id=CVE-2017-12673
07 Aug 2017 — In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.6-3 en la función ReadOneMNGImage en coders/png.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio. • http://www.securityfocus.com/bid/100228 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12674 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-12674
07 Aug 2017 — In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de agotamiento de CPU en ImageMagick 7.0.6-2 en la función ReadPDBImage en coders/pdb.c. Esta vulnerabilidad permite que los atacantes causen una denegación de servicio. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tri... • https://github.com/ImageMagick/ImageMagick/issues/604 • CWE-834: Excessive Iteration •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12675
https://notcve.org/view.php?id=CVE-2017-12675
07 Aug 2017 — In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadImage in MagickCore/constitute.c, which allows attackers to cause a denial of service. Se ha encontrado un problema en ImageMagick 7.0.6-3 de falta de comprobación de datos multidimensionales en coders/mat.c, que conduce a una fuga de memoria en la función ReadImage en MagickCore/constitute.c. Esto provoca que los atacantes puedan causar denegaciones de servicio. • https://github.com/ImageMagick/ImageMagick/issues/616 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12676
https://notcve.org/view.php?id=CVE-2017-12676
07 Aug 2017 — In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.6-3 en la función ReadOneJNGImage en coders/png.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio. • http://www.securityfocus.com/bid/100225 • CWE-20: Improper Input Validation CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12654
https://notcve.org/view.php?id=CVE-2017-12654
07 Aug 2017 — The ReadPICTImage function in coders/pict.c in ImageMagick 7.0.6-3 allows attackers to cause a denial of service (memory leak) via a crafted file. La función ReadPICTImage en coders/pict.c de ImageMagick 7.0.6-3 permite que atacantes remotos provoquen una denegación de servicio (filtrado de memoria) mediante un archivo manipulado. • http://www.securityfocus.com/bid/100230 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 1%CPEs: 3EXPL: 0CVE-2017-12640 – Debian Security Advisory 4019-1
https://notcve.org/view.php?id=CVE-2017-12640
07 Aug 2017 — ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de lectura fuera de límites en ReadOneMNGImage en coders/png.c. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user inv... • http://www.securityfocus.com/bid/100155 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12641
https://notcve.org/view.php?id=CVE-2017-12641
07 Aug 2017 — ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtración de memoria en ReadOneJNGImage en coders\png.c. • https://github.com/ImageMagick/ImageMagick/commit/c9aa9f80828594eacbe3affe16c43d623562e5d8 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12642
https://notcve.org/view.php?id=CVE-2017-12642
07 Aug 2017 — ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtración de memoria en ReadMPCImage en coders\mpc.c. • http://www.securityfocus.com/bid/100159 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.1EPSS: 1%CPEs: 3EXPL: 0CVE-2017-12643 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-12643
07 Aug 2017 — ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de agotamiento de memoria en ReadOneJNGImage en coders\png.c. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invokin... • http://www.securityfocus.com/bid/100218 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12644 – Ubuntu Security Notice USN-3681-1
https://notcve.org/view.php?id=CVE-2017-12644
07 Aug 2017 — ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtración de memoria en ReadDCMImage en coders\dcm.c. It was discovered that ImageMagick incorrectly handled certain malformed image files. If a user or automated system using ImageMagick were tricked into opening a specially crafted image, an attacker could exploit this to cause a denial of service or possibly execute code with the privileges of the user invoking the program... • http://www.securityfocus.com/bid/100162 • CWE-772: Missing Release of Resource after Effective Lifetime •