CVE-2017-12983
https://notcve.org/view.php?id=CVE-2017-12983
Heap-based buffer overflow in the ReadSFWImage function in coders/sfw.c in ImageMagick 7.0.6-8 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file. Un desbordamiento de búfer basado en montículos en la función ReadSFWImage en coders/sfw.c en ImageMagick 7.0.6-8 permite que atacantes remotos provoquen una denegación de servicio o, posiblemente, provocar cualquier otro tipo de problema mediante un archivo manipulado. • https://github.com/ImageMagick/ImageMagick/issues/682 https://security.gentoo.org/glsa/201711-07 https://usn.ubuntu.com/3681-1 https://www.debian.org/security/2017/dsa-4032 https://www.debian.org/security/2017/dsa-4040 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVE-2017-12667
https://notcve.org/view.php?id=CVE-2017-12667
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in coders\mat.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtrado de memoria en ReadMATImage en coders\mat.c. • https://github.com/ImageMagick/ImageMagick/commit/bfb7915d4b2e11acb6a819e451c382dc645277db https://github.com/ImageMagick/ImageMagick/issues/553 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2017-12668
https://notcve.org/view.php?id=CVE-2017-12668
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c. ImageMagick 7.0.6-2 tiene una vulnerabilidad de filtrado de memoria en WritePCXImage en coders/pcx.c. • https://github.com/ImageMagick/ImageMagick/commit/2ba8f335fa06daf1165e0878462686028e633a74 https://github.com/ImageMagick/ImageMagick/issues/575 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2017-12676
https://notcve.org/view.php?id=CVE-2017-12676
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.6-3 en la función ReadOneJNGImage en coders/png.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio. • http://www.securityfocus.com/bid/100225 https://github.com/ImageMagick/ImageMagick/issues/618 • CWE-20: Improper Input Validation CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2017-12666
https://notcve.org/view.php?id=CVE-2017-12666
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImage in coders/inline.c. ImageMagick 7.0.6-2 tiene una vulnerabilidad de filtrado de memoria en WriteINLINEImage en coders/inline.c. • http://www.securityfocus.com/bid/100226 https://github.com/ImageMagick/ImageMagick/commit/d5559407ce29f4371e5df9c1cbde65455fe5854c https://github.com/ImageMagick/ImageMagick/issues/572 • CWE-772: Missing Release of Resource after Effective Lifetime •