CVSS: 8.8EPSS: 30%CPEs: 4EXPL: 3CVE-2017-16352 – GraphicsMagick - Memory Disclosure / Heap Overflow
https://notcve.org/view.php?id=CVE-2017-16352
01 Nov 2017 — GraphicsMagick 1.3.26 is vulnerable to a heap-based buffer overflow vulnerability found in the "Display visual image directory" feature of the DescribeImage() function of the magick/describe.c file. One possible way to trigger the vulnerability is to run the identify command on a specially crafted MIFF format file with the verbose flag. GraphicsMagick 1.3.26 es vulnerable a un desbordamiento de búfer basado en memoria dinámica (heap) que se ha encontrado en la característica "Display visual image directory"... • https://packetstorm.news/files/id/144878 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 35%CPEs: 4EXPL: 3CVE-2017-16353 – GraphicsMagick - Memory Disclosure / Heap Overflow
https://notcve.org/view.php?id=CVE-2017-16353
01 Nov 2017 — GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. GraphicsMagick 1.3.26... • https://packetstorm.news/files/id/144878 • CWE-125: Out-of-bounds Read CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 3EXPL: 0CVE-2017-15930 – Ubuntu Security Notice USN-4232-1
https://notcve.org/view.php?id=CVE-2017-15930
27 Oct 2017 — In ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26, a Null Pointer Dereference occurs while transferring JPEG scanlines, related to a PixelPacket pointer. En ReadOneJNGImage en coders/png.c en GraphicsMagick 1.3.26, ocurre una desreferencia de puntero NULL cuando se transfieren scanlines JPEG. Esta vulnerabilidad está relacionada con un puntero PixelPacket. It was discovered that GraphicsMagick incorrectly handled certain image files. An attacker could possibly use this issue to cause a denial of s... • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=6fc54b6d2be8 • CWE-476: NULL Pointer Dereference •
CVSS: 6.5EPSS: 51%CPEs: 2EXPL: 2CVE-2017-15277 – Debian Security Advisory 4032-1
https://notcve.org/view.php?id=CVE-2017-15277
12 Oct 2017 — ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette. ReadGIFImage en coders/gif.c en ImageMagick 7.0.6-1 y GraphicsMagick 1.3.26 deja sin inicializar la paleta cuando se procesa un archivo GIF que no tiene ni una pa... • https://github.com/hexrom/ImageMagick-CVE-2017-15277 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 8.8EPSS: 0%CPEs: 2EXPL: 0CVE-2017-15238
https://notcve.org/view.php?id=CVE-2017-15238
11 Oct 2017 — ReadOneJNGImage in coders/png.c in GraphicsMagick 1.3.26 has a use-after-free issue when the height or width is zero, related to ReadJNGImage. ReadOneJNGImage en coders/png.c en GraphicsMagick 1.3.26 tiene un problema de uso de memoria previamente liberada cuando el ancho o el alto es cero, relacionado con ReadJNGImage. • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=93bdb9b30076 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 3%CPEs: 3EXPL: 1CVE-2017-14994
https://notcve.org/view.php?id=CVE-2017-14994
03 Oct 2017 — ReadDCMImage in coders/dcm.c in GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted DICOM image, related to the ability of DCM_ReadNonNativeImages to yield an image list with zero frames. ReadDCMImage en coders/dcm.c en GraphicsMagick 1.3.26 permite que atacantes remotos provoquen una denegación de servicio (desreferencia de puntero NULL) mediante una imagen DICOM manipulada. Esta vulnerabilidad está relacionada con la capacidad de DCM_ReadNonN... • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=b3eca3eaa264 • CWE-476: NULL Pointer Dereference •
CVSS: 7.1EPSS: 1%CPEs: 3EXPL: 0CVE-2017-14997
https://notcve.org/view.php?id=CVE-2017-14997
03 Oct 2017 — GraphicsMagick 1.3.26 allows remote attackers to cause a denial of service (excessive memory allocation) because of an integer underflow in ReadPICTImage in coders/pict.c. GraphicsMagick 1.3.26 permite que los atacantes remotos provoquen una denegación de servicio (asignación excesiva de memoria) a causa de un subdesbordamiento de enteros en ReadPICTImage en coders/pict.c. • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=0683f8724200 • CWE-191: Integer Underflow (Wrap or Wraparound) •
CVSS: 6.5EPSS: 1%CPEs: 3EXPL: 0CVE-2017-14733 – Ubuntu Security Notice USN-4232-1
https://notcve.org/view.php?id=CVE-2017-14733
25 Sep 2017 — ReadRLEImage in coders/rle.c in GraphicsMagick 1.3.26 mishandles RLE headers that specify too few colors, which allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted file. ReadRLEImage en coders/rle.c en GraphicsMagick 1.3.26 no gestiona correctamente las cabeceras RLE que especifican muy pocos colores. Esto permite que los atacantes remotos provoquen una denegación de servicio (sobrelectura de búfer basada en memoria dinámica o heap y cierre ... • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=5381c71724e3 • CWE-125: Out-of-bounds Read •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-14649
https://notcve.org/view.php?id=CVE-2017-14649
21 Sep 2017 — ReadOneJNGImage in coders/png.c in GraphicsMagick version 1.3.26 does not properly validate JNG data, leading to a denial of service (assertion failure in magick/pixel_cache.c, and application crash). ReadOneJNGImage en coders/png.c en GraphicsMagick 1.3.26 no valida correctamente los datos JNG, provocando una denegación de servicio (fallo de aserción en magick/pixel_cache.c y cierre inesperado de la aplicación). • http://hg.code.sf.net/p/graphicsmagick/code/rev/358608a46f0a • CWE-617: Reachable Assertion •
CVSS: 6.5EPSS: 1%CPEs: 3EXPL: 0CVE-2017-14504
https://notcve.org/view.php?id=CVE-2017-14504
17 Sep 2017 — ReadPNMImage in coders/pnm.c in GraphicsMagick 1.3.26 does not ensure the correct number of colors for the XV 332 format, leading to a NULL Pointer Dereference. ReadPNMImage en coders/pnm.c en GraphicsMagick 1.3.26 no garantiza el número correcto de colores para el formato XV 332. provocando una desreferencia de puntero NULL. • http://hg.graphicsmagick.org/hg/GraphicsMagick?cmd=changeset%3Bnode=fb09ca6dd22c • CWE-476: NULL Pointer Dereference •