CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2017-8355
https://notcve.org/view.php?id=CVE-2017-8355
In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file. En ImageMagick 7.0.5-5, la función ReadMTVImage en mtv.c permite a atacantes provocar una denegación de servicio (pérdida de memoria) a través de un archivo diseñado. • http://www.debian.org/security/2017/dsa-3863 http://www.securityfocus.com/bid/98380 https://github.com/ImageMagick/ImageMagick/issues/450 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2017-7941
https://notcve.org/view.php?id=CVE-2017-7941
The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. La función ReadSGIImage en sgi.c en ImageMagick 7.0.5-4 permite a atacantes remotos consumir una cantidad de memoria disponible a través de un archivo manipulado. • http://www.debian.org/security/2017/dsa-3863 http://www.securityfocus.com/bid/97944 https://github.com/ImageMagick/ImageMagick/issues/428 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7942
https://notcve.org/view.php?id=CVE-2017-7942
The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. La función ReadAVSImage en avs.c en ImageMagick 7.0.5-4 permite a atacantes remotos consumir una cantidad de memoria disponible a través de un archivo manipulado. • http://www.securityfocus.com/bid/97946 https://github.com/ImageMagick/ImageMagick/issues/429 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 3EXPL: 0CVE-2017-7943
https://notcve.org/view.php?id=CVE-2017-7943
The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted file. La función ReadSVGImage en svg.c en ImageMagick 7.0.5-4 permite a atacantes remotos consumir una cantidad de memoria disponible a través de un archivo manipulado. • http://www.debian.org/security/2017/dsa-3863 http://www.securityfocus.com/bid/97956 https://github.com/ImageMagick/ImageMagick/issues/427 • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-7619
https://notcve.org/view.php?id=CVE-2017-7619
In ImageMagick 7.0.4-9, an infinite loop can occur because of a floating-point rounding error in some of the color algorithms. This affects ModulateHSL, ModulateHCL, ModulateHCLp, ModulateHSB, ModulateHSI, ModulateHSV, ModulateHWB, ModulateLCHab, and ModulateLCHuv. En ImageMagick 7.0.4-9, un bucle infinito puede ocurrir debido a un error de redondeo de punto flotante en algunos de los algoritmos de color. Esto afecta a ModulateHSL, ModulateHCL, ModulateHCLp, ModulateHSB, ModulateHSI, ModulateHSV, ModulateHWB, ModulateLCHab y ModulateLCHuv. • http://www.debian.org/security/2017/dsa-3863 http://www.securityfocus.com/bid/98689 https://www.imagemagick.org/discourse-server/viewtopic.php?f=3&t=31506 • CWE-835: Loop with Unreachable Exit Condition ('Infinite Loop') •