CVSS: 6.5EPSS: 0%CPEs: 4EXPL: 1CVE-2018-14437 – ImageMagick: memory leak in parse8BIM in coders/meta.c
https://notcve.org/view.php?id=CVE-2018-14437
ImageMagick 7.0.8-4 has a memory leak in parse8BIM in coders/meta.c. ImageMagick 7.0.8-4 tiene una fuga de memoria en parse8BIM en coders/meta.c. • https://github.com/ImageMagick/ImageMagick/issues/1190 https://usn.ubuntu.com/3785-1 https://access.redhat.com/security/cve/CVE-2018-14437 https://bugzilla.redhat.com/show_bug.cgi?id=1609942 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-13153 – ImageMagick: memory leak in the XMagickCommand function in MagickCore/animate.c
https://notcve.org/view.php?id=CVE-2018-13153
In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. En ImageMagick 7.0.8-4 hay una fuga de memoria en la función XMagickCommand en MagickCore/animate.c. A memory leak was discovered in ImageMagick in the XMagickCommand function in animate.c file. An array of strings, named filelist, is allocated on the heap but not released in case the function ExpandFilenames returns an error code. • http://www.securityfocus.com/bid/104687 http://www.securitytracker.com/id/1041219 https://github.com/ImageMagick/ImageMagick/issues/1195 https://usn.ubuntu.com/3711-1 https://access.redhat.com/security/cve/CVE-2018-13153 https://bugzilla.redhat.com/show_bug.cgi?id=1598471 • CWE-400: Uncontrolled Resource Consumption CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12599 – ImageMagick: out of bounds write in ReadBMPImage and WriteBMPImage in coders/bmp.c
https://notcve.org/view.php?id=CVE-2018-12599
In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadBMPImage y WriteBMPImage en coders/bmp.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/1177 https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html https://usn.ubuntu.com/3711-1 https://www.debian.org/security/2018/dsa-4245 https://access.redhat.com/security/cve/CVE-2018-12599 https://bugzilla.redhat.com/show_bug.cgi?id=1594338 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 8.8EPSS: 0%CPEs: 7EXPL: 1CVE-2018-12600 – ImageMagick: out of bounds write ReadDIBImage and WriteDIBImage in coders/dib.c
https://notcve.org/view.php?id=CVE-2018-12600
In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted file. En ImageMagick 7.0.8-3 Q16, ReadDIBImage y WriteDIBImage en coders/dib.c permiten que los atacantes provoquen una escritura fuera de límites mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/1178 https://lists.debian.org/debian-lts-announce/2018/06/msg00004.html https://usn.ubuntu.com/3711-1 https://www.debian.org/security/2018/dsa-4245 https://access.redhat.com/security/cve/CVE-2018-12600 https://bugzilla.redhat.com/show_bug.cgi?id=1594339 • CWE-122: Heap-based Buffer Overflow CWE-787: Out-of-bounds Write •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 1CVE-2018-11655
https://notcve.org/view.php?id=CVE-2018-11655
In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was found in the function GetImagePixelCache in MagickCore/cache.c, which allows attackers to cause a denial of service via a crafted CALS image file. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.7-20 Q16 x86_64 en la función GetImagePixelCache en MagickCore/cache.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio mediante un archivo de imagen CALS manipulado. • https://github.com/ImageMagick/ImageMagick/issues/930 https://usn.ubuntu.com/3681-1 • CWE-772: Missing Release of Resource after Effective Lifetime •