CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12673
https://notcve.org/view.php?id=CVE-2017-12673
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.6-3 en la función ReadOneMNGImage en coders/png.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio. • http://www.securityfocus.com/bid/100228 https://github.com/ImageMagick/ImageMagick/issues/619 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12671
https://notcve.org/view.php?id=CVE-2017-12671
In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMemory in MagickCore/memory.c, which allows attackers to cause a denial of service. Se ha encontrado un problema de falta de asignación NULL en ImageMagick 7.0.6-3 en coders/mat.c, que conduce a una liberación no válida (invalid free) en la función DestroyImage en MagickCore/image.c. Esto provoca que los atacantes puedan causar denegaciones de servicio. • https://github.com/ImageMagick/ImageMagick/issues/621 https://www.debian.org/security/2017/dsa-4019 • CWE-416: Use After Free •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12672
https://notcve.org/view.php?id=CVE-2017-12672
In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause a denial of service. Se ha encontrado una vulnerabilidad de filtrado de memoria en ImageMagick 7.0.6-3 en la función ReadMATImage en coders/mat.c. Esta vulnerabilidad permite que los atacantes provoquen una denegación de servicio. • http://www.securityfocus.com/bid/100224 https://github.com/ImageMagick/ImageMagick/issues/617 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12670
https://notcve.org/view.php?id=CVE-2017-12670
In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in MagickCore/image.c, which allows attackers to cause a denial of service. Se ha encontrado un problema en ImageMagick 7.0.6-3 de falta de validación en coders/mat.c, que conduce a un fallo de aserción en la función DestroyImage en MagickCore/image.c. Esto provoca que los atacantes puedan causar denegaciones de servicio. • http://www.securityfocus.com/bid/100252 https://github.com/ImageMagick/ImageMagick/issues/610 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-20: Improper Input Validation CWE-617: Reachable Assertion •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2017-12665
https://notcve.org/view.php?id=CVE-2017-12665
ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c. ImageMagick 7.0.6-2 tiene una vulnerabilidad de filtrado de memoria en WritePICTImage en coders/pict.c • https://github.com/ImageMagick/ImageMagick/commit/c1b09bbec148f6ae11d0b686fdb89ac6dc0ab14e https://github.com/ImageMagick/ImageMagick/issues/577 • CWE-772: Missing Release of Resource after Effective Lifetime •