CVE-2017-12654
https://notcve.org/view.php?id=CVE-2017-12654
The ReadPICTImage function in coders/pict.c in ImageMagick 7.0.6-3 allows attackers to cause a denial of service (memory leak) via a crafted file. La función ReadPICTImage en coders/pict.c de ImageMagick 7.0.6-3 permite que atacantes remotos provoquen una denegación de servicio (filtrado de memoria) mediante un archivo manipulado. • http://www.securityfocus.com/bid/100230 https://github.com/ImageMagick/ImageMagick/issues/620 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2017-12640
https://notcve.org/view.php?id=CVE-2017-12640
ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de lectura fuera de límites en ReadOneMNGImage en coders/png.c. • http://www.securityfocus.com/bid/100155 https://github.com/ImageMagick/ImageMagick/commit/307fa45d512641fcd105f0d57ca50c1437cd1b81 https://github.com/ImageMagick/ImageMagick/issues/542 https://usn.ubuntu.com/3681-1 https://www.debian.org/security/2017/dsa-4019 https://www.debian.org/security/2017/dsa-4040 • CWE-125: Out-of-bounds Read •
CVE-2017-12642
https://notcve.org/view.php?id=CVE-2017-12642
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtración de memoria en ReadMPCImage en coders\mpc.c. • http://www.securityfocus.com/bid/100159 https://github.com/ImageMagick/ImageMagick/issues/552 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVE-2017-12643
https://notcve.org/view.php?id=CVE-2017-12643
ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de agotamiento de memoria en ReadOneJNGImage en coders\png.c. • http://www.securityfocus.com/bid/100218 https://github.com/ImageMagick/ImageMagick/commit/d9ccd8227c4c88a907cda5278408b73552cb0c07 https://github.com/ImageMagick/ImageMagick/issues/549 https://lists.debian.org/debian-lts-announce/2019/05/msg00015.html https://lists.debian.org/debian-lts-announce/2020/09/msg00007.html https://usn.ubuntu.com/3681-1 • CWE-770: Allocation of Resources Without Limits or Throttling •
CVE-2017-12641
https://notcve.org/view.php?id=CVE-2017-12641
ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c. ImageMagick 7.0.6-1 tiene una vulnerabilidad de filtración de memoria en ReadOneJNGImage en coders\png.c. • https://github.com/ImageMagick/ImageMagick/commit/c9aa9f80828594eacbe3affe16c43d623562e5d8 https://github.com/ImageMagick/ImageMagick/issues/550 • CWE-772: Missing Release of Resource after Effective Lifetime •