CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2020-21679
https://notcve.org/view.php?id=CVE-2020-21679
22 Aug 2023 — Buffer Overflow vulnerability in WritePCXImage function in pcx.c in GraphicsMagick 1.4 allows remote attackers to cause a denial of service via converting of crafted image file to pcx format. • https://sourceforge.net/p/graphicsmagick/bugs/619 • CWE-787: Out-of-bounds Write •
CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 1CVE-2019-19950 – Debian Security Advisory 4640-1
https://notcve.org/view.php?id=CVE-2019-19950
24 Dec 2019 — In GraphicsMagick 1.4 snapshot-20190403 Q8, there is a use-after-free in ThrowException and ThrowLoggedException of magick/error.c. En GraphicsMagick versión 1.4 snapshot-20190403 Q8, se presenta un uso de la memoria previamente liberada de las funciones ThrowException y ThrowLoggedException del archivo magick/error.c. handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed media files are proces... • http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/44ab7f6c20b4 • CWE-416: Use After Free •
CVSS: 9.8EPSS: 1%CPEs: 6EXPL: 1CVE-2019-19951 – Debian Security Advisory 4640-1
https://notcve.org/view.php?id=CVE-2019-19951
24 Dec 2019 — In GraphicsMagick 1.4 snapshot-20190423 Q8, there is a heap-based buffer overflow in the function ImportRLEPixels of coders/miff.c. En GraphicsMagick versión 1.4 snapshot-20190423 Q8, se presenta un desbordamiento de búfer en la región heap de la memoria en la función ImportRLEPixels del archivo coders/miff.c. handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed media files are processed. • http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/bc99af93614d • CWE-787: Out-of-bounds Write •
CVSS: 9.1EPSS: 1%CPEs: 6EXPL: 1CVE-2019-19953 – Debian Security Advisory 4640-1
https://notcve.org/view.php?id=CVE-2019-19953
24 Dec 2019 — In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c. En GraphicsMagick versión 1.4 snapshot-20191208 Q8, se presenta una lectura excesiva de búfer en la región heap de la memoria en la función EncodeImage del archivo coders/pict.c. handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or the execution of arbitrary code if malformed media files are processed. • http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/28f8bacd4bbf • CWE-125: Out-of-bounds Read •
CVSS: 6.5EPSS: 0%CPEs: 2EXPL: 1CVE-2018-20184 – Ubuntu Security Notice USN-5974-1
https://notcve.org/view.php?id=CVE-2018-20184
17 Dec 2018 — In GraphicsMagick 1.4 snapshot-20181209 Q8, there is a heap-based buffer overflow in the WriteTGAImage function of tga.c, which allows attackers to cause a denial of service via a crafted image file, because the number of rows or columns can exceed the pixel-dimension restrictions of the TGA specification. En GraphicsMagick 1.4 snapshot-20181209 Q8, hay un desbordamiento de búfer basado en memoria dinámica (heap) en la función WriteTGAImage de tga.c, lo que permite que los atacantes provoquen una denegación... • http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/15d1b5fd003b • CWE-787: Out-of-bounds Write •
CVSS: 5.3EPSS: 0%CPEs: 5EXPL: 1CVE-2018-20185 – Debian Security Advisory 4640-1
https://notcve.org/view.php?id=CVE-2018-20185
17 Dec 2018 — In GraphicsMagick 1.4 snapshot-20181209 Q8 on 32-bit platforms, there is a heap-based buffer over-read in the ReadBMPImage function of bmp.c, which allows attackers to cause a denial of service via a crafted bmp image file. This only affects GraphicsMagick installations with customized BMP limits. Hay una sobrelectura de búfer basada en memoria dinámica (heap) en GraphicsMagick 1.4 snapshot-20181209 Q8 en plataformas de 32 bits, en la función ReadBMPImage de bmp.c que permite que atacantes provoquen una den... • http://hg.graphicsmagick.org/hg/GraphicsMagick/rev/648e3977a293 • CWE-125: Out-of-bounds Read •
CVSS: 8.8EPSS: 3%CPEs: 57EXPL: 1CVE-2005-0005
https://notcve.org/view.php?id=CVE-2005-0005
19 Jan 2005 — Heap-based buffer overflow in psd.c for ImageMagick 6.1.0, 6.1.7, and possibly earlier versions allows remote attackers to execute arbitrary code via a .PSD image file with a large number of layers. • http://marc.info/?l=bugtraq&m=110608222117215&w=2 •