CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14741
https://notcve.org/view.php?id=CVE-2017-14741
The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers to cause a denial of service (infinite loop) via a crafted font file. La función ReadCAPTIONImage en coders/caption.c en ImageMagick 7.0.7-3 permite que atacantes remotos provoquen una denegación de servicio (bucle infinito) mediante un archivo de fuente manipulado. • https://github.com/ImageMagick/ImageMagick/issues/771 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •
CVSS: 7.1EPSS: 0%CPEs: 1EXPL: 1CVE-2017-14684
https://notcve.org/view.php?id=CVE-2017-14684
In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in the function ReadVIPSImage in coders/vips.c, which allows attackers to cause a denial of service (memory consumption in ResizeMagickMemory in MagickCore/memory.c) via a crafted file. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.7-4 Q16 en la función ReadVIPSImage en coders/vips.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio (consumo de memoria en ResizeMagickMemory en MagickCore/memory.c) mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/770 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 0CVE-2017-14626
https://notcve.org/view.php?id=CVE-2017-14626
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c. ImageMagick 7.0.7-0 Q16 tiene una vulnerabilidad de desreferencia de puntero NULL en la función sixel_decode en coders/sixel.c. • http://www.securityfocus.com/bid/100943 https://github.com/ImageMagick/ImageMagick/issues/720 https://github.com/ImageMagick/ImageMagick/issues/721 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-14625
https://notcve.org/view.php?id=CVE-2017-14625
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c. ImageMagick 7.0.7-0 Q16 tiene una vulnerabilidad de desreferencia de puntero NULL en la función sixel_output_create en coders/sixel.c. • http://www.securityfocus.com/bid/100941 https://github.com/ImageMagick/ImageMagick/issues/721 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-476: NULL Pointer Dereference •
CVSS: 9.8EPSS: 0%CPEs: 5EXPL: 0CVE-2017-14624
https://notcve.org/view.php?id=CVE-2017-14624
ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c. ImageMagick 7.0.7-0 Q16 tiene una vulnerabilidad de desreferencia de puntero NULL en la función PostscriptDelegateMessage en coders/ps.c. • http://www.securityfocus.com/bid/100940 https://github.com/ImageMagick/ImageMagick/issues/722 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-476: NULL Pointer Dereference •