pkg:Debian/imagemagick
796 total CVEsCRITICAL36HIGH209MEDIUM470LOW33
✅ Check your installed version
All known vulnerabilities
- from 0, < 8:6.7.7.10-5+deb7u5
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-5+deb8u2
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2026-23876ImageMagick is free and open-source software used for editing and manipulating digital images.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u9
- from 0
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u19
- CRITICAL9.8CVE-2018-16328In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the CheckEventLogging function in MagickCore/log.c.from 0, < 8:6.9.10.8+dfsg-1
- CRITICAL9.8CVE-2018-14551The ReadMATImageV4 function in coders/mat.c in ImageMagick 7.0.8-7 uses an uninitialized variable, leading to memory corruption.from 0, < 8:6.9.10.8+dfsg-1
- CRITICAL9.8CVE-2017-18211In ImageMagick 7.0.7, a NULL pointer dereference vulnerability was found in the function saveBinaryCLProgram in magick/opencl.c because a p…from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-17499ImageMagick before 6.9.9-24 and 7.x before 7.0.7-12 has a use-after-free in Magick::Image::read in Magick++/lib/Image.cpp.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-15032ImageMagick version 7.0.7-2 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-14626ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_decode in coders/sixel.c.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-14625ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function sixel_output_create in coders/sixel.c.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-14624ImageMagick 7.0.7-0 Q16 has a NULL Pointer Dereference vulnerability in the function PostscriptDelegateMessage in coders/ps.c.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-14532ImageMagick 7.0.7-0 has a NULL Pointer Dereference in TIFFIgnoreTags in coders/tiff.c.from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-14138ImageMagick 7.0.6-5 has a memory leak vulnerability in ReadWEBPImage in coders/webp.c because memory is not freed in certain error cases, a…from 0, < 8:6.9.9.34+dfsg-3
- CRITICAL9.8CVE-2017-13139In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, the ReadOneMNGImage function in coders/png.c has an out-of-bounds read with the MNG C…from 0, < 8:6.9.7.4+dfsg-15
- CRITICAL9.8CVE-2014-9826ImageMagick allows remote attackers to have unspecified impact via vectors related to error handling in sun files.from 0, < 8:6.8.9.9-4
- CRITICAL9.8CVE-2017-5511coders/psd.c in ImageMagick allows remote attackers to have unspecified impact by leveraging an improper cast, which triggers a heap-based…from 0, < 8:6.9.7.4+dfsg-1
- CRITICAL9.8CVE-2016-10145Off-by-one error in coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via vectors related to a string copy.from 0, < 8:6.9.7.4+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-1
- from 0, < 8:6.7.7.10-5+deb7u11
- CRITICAL9.8CVE-2014-9847The jng decoder in ImageMagick 6.8.9.9 allows remote attackers to have an unspecified impact.from 0, < 8:6.8.9.9-4
- CRITICAL9.8CVE-2014-9846Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact.from 0, < 8:6.8.9.9-4
- CRITICAL9.8CVE-2014-9843The DecodePSDPixels function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors.from 0, < 8:6.8.9.9-4
- CRITICAL9.8CVE-2014-9841The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, r…from 0, < 8:6.8.9.9-4
- CRITICAL9.8CVE-2014-9852distribute-cache.c in ImageMagick re-uses objects after they have been destroyed, which allows remote attackers to have unspecified impact…from 0, < 8:6.8.9.9-4
- from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2016-5841Integer overflow in MagickCore/profile.c in ImageMagick before 7.0.2-1 allows remote attackers to cause a denial of service (segmentation f…from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2016-5691The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack o…from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2016-5690The ReadDCMImage function in DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified im…from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2016-5689The DCM reader in ImageMagick before 6.9.4-5 and 7.x before 7.0.1-7 allows remote attackers to have unspecified impact by leveraging lack o…from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.8CVE-2016-5687The VerticalFilter function in the DDS coder in ImageMagick before 6.9.4-3 and 7.x before 7.0.1-4 allows remote attackers to have unspecifi…from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-5+deb8u3
- from 0, < 8:6.7.7.10-5+deb7u6
- from 0, < 8:6.8.9.9-7.1
- CRITICAL9.8CVE-2016-4564The DrawImage function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 makes an incorrect function call in attemp…from 0, < 8:6.9.6.2+dfsg-2
- CRITICAL9.1CVE-2019-19949In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WritePNGImage of coders/png.c, related to Magick_png_wr…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.60+dfsg-1.6+deb12u4
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- HIGH8.8CVE-2014-2030Stack-based buffer overflow in the WritePSDImage function in coders/psd.c in ImageMagick, possibly 6.8.8-5, allows remote attackers to caus…from 0, < 8:6.7.7.10+dfsg-1
- HIGH8.8CVE-2014-1958Buffer overflow in the DecodePSDPixels function in coders/psd.c in ImageMagick before 6.8.8-5 might allow remote attackers to execute arbit…from 0, < 8:6.7.7.10+dfsg-1
- HIGH8.8CVE-2019-15140coders/mat.c in ImageMagick 7.0.8-43 Q16 allows remote attackers to cause a denial of service (use-after-free and application crash) or pos…from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-13391In ImageMagick 7.0.8-50 Q16, ComplexImages in MagickCore/fourier.c has a heap-based buffer over-read because of incorrect calls to GetCache…from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-13308ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow in MagickCore/fourier.c in ComplexImage.from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u8
- from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-13297ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a height of zero is…from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-13295ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read at MagickCore/threshold.c in AdaptiveThresholdImage because a width of zero is m…from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-13135ImageMagick before 7.0.8-50 has a "use of uninitialized value" vulnerability in the function ReadCUTImage in coders/cut.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.8CVE-2019-9956In ImageMagick 7.0.8-35 Q16, there is a stack-based buffer overflow in the function PopHexPixel of coders/ps.c, which allows an attacker to…from 0, < 8:6.9.10.23+dfsg-2.1
- HIGH8.8CVE-2018-16413ImageMagick 7.0.8-11 Q16 has a heap-based buffer over-read in the MagickCore/quantum-private.h PushShortPixel function when called from the…from 0, < 8:6.9.10.14+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u6
- from 0, < 8:6.9.10.14+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u14
- HIGH8.8CVE-2018-12600In ImageMagick 7.0.8-3 Q16, ReadDIBImage and WriteDIBImage in coders/dib.c allow attackers to cause an out of bounds write via a crafted fi…from 0, < 8:6.9.10.2+dfsg-2
- HIGH8.8CVE-2018-12599In ImageMagick 7.0.8-3 Q16, ReadBMPImage and WriteBMPImage in coders/bmp.c allow attackers to cause an out of bounds write via a crafted fi…from 0, < 8:6.9.10.2+dfsg-2
- HIGH8.8CVE-2018-11625In ImageMagick 7.0.7-37 Q16, SetGrayscaleImage in the quantize.c file allows attackers to cause a heap-based buffer over-read via a crafted…from 0, < 8:6.9.10.2+dfsg-2
- HIGH8.8CVE-2018-11624In ImageMagick 7.0.7-36 Q16, the ReadMATImage function in coders/mat.c allows attackers to cause a use after free via a crafted file.from 0, < 8:6.9.10.2+dfsg-2
- HIGH8.8CVE-2018-9135In ImageMagick 7.0.7-24 Q16, there is a heap-based buffer over-read in IsWEBPImageLossless in coders/webp.c.from 0, < 8:6.9.10.8+dfsg-1
- HIGH8.8CVE-2018-8960The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-bas…from 0, < 8:6.9.9.39+dfsg-1
- HIGH8.8CVE-2018-8804WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double…from 0, < 8:6.9.9.39+dfsg-1
- HIGH8.8CVE-2017-18209In the GetOpenCLCachedFilesDirectory function in magick/opencl.c in ImageMagick 7.0.7, a NULL pointer dereference vulnerability occurs beca…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2018-5248In ImageMagick 7.0.7-17 Q16, there is a heap-based buffer over-read in coders/sixel.c in the ReadSIXELImage function, related to the sixel_…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-17880In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a stack-based buffer over-read in WriteWEBPImage in coders/webp.c, related to a WEB…from 0, < 8:6.9.9.39+dfsg-1
- HIGH8.8CVE-2017-17879In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-21, there is a heap-based buffer over-read in ReadOneMNGImage in coders/png.c, related to length…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-16546The ReadWPGImage function in coders/wpg.c in ImageMagick 7.0.7-9 does not properly validate the colormap index in a WPG palette, which allo…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-15281ReadPSDImage in coders/psd.c in ImageMagick 7.0.7-6 allows remote attackers to cause a denial of service (application crash) or possibly ha…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-15017ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadOneMNGImage in coders/png.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-15016ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in ReadEnhMetaFile in coders/emf.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-15015ImageMagick 7.0.7-0 Q16 has a NULL pointer dereference vulnerability in PDFDelegateMessage in coders/pdf.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-14682GetNextToken in MagickCore/token.c in ImageMagick 7.0.6 allows remote attackers to cause a denial of service (heap-based buffer overflow an…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-14224A heap-based buffer overflow in WritePCXImage in coders/pcx.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of servi…from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-13146In ImageMagick before 6.9.8-5 and 7.x before 7.0.5-6, there is a memory leak in the ReadMATImage function in coders/mat.c.from 0, < 8:6.9.7.4+dfsg-14
- from 0, < 8:6.9.7.4+dfsg-11+deb9u3
- from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-12669ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteCALSImage in coders/cals.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-12668ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-12667ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMATImage in coders\mat.c.from 0, < 8:6.9.7.4+dfsg-14
- HIGH8.8CVE-2017-12666ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteINLINEImage in coders/inline.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-12665ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePICTImage in coders/pict.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-12664ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePALMImage in coders/palm.c.from 0, < 8:6.9.7.4+dfsg-13
- HIGH8.8CVE-2017-12663ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMAPImage in coders/map.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-12662ImageMagick 7.0.6-2 has a memory leak vulnerability in WritePDFImage in coders/pdf.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2014-9831coders/wpg.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted wpg file.from 0, < 8:6.8.9.9-4
- HIGH8.8CVE-2014-9830coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.from 0, < 8:6.8.9.9-4
- HIGH8.8CVE-2014-9828coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file.from 0, < 8:6.8.9.9-4
- HIGH8.8CVE-2014-9827coders/xpm.c in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.from 0, < 8:6.8.9.9-4
- HIGH8.8CVE-2017-12644ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadDCMImage in coders\dcm.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.8CVE-2017-12642ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadMPCImage in coders\mpc.c.from 0, < 8:6.9.7.4+dfsg-13
- HIGH8.8CVE-2017-12641ImageMagick 7.0.6-1 has a memory leak vulnerability in ReadOneJNGImage in coders\png.c.from 0, < 8:6.9.7.4+dfsg-15
- HIGH8.8CVE-2017-12640ImageMagick 7.0.6-1 has an out-of-bounds read vulnerability in ReadOneMNGImage in coders/png.c.from 0, < 8:6.9.7.4+dfsg-15
- HIGH8.8CVE-2017-12587ImageMagick 7.0.6-1 has a large loop vulnerability in the ReadPWPImage function in coders\pwp.c.from 0, < 8:6.9.7.4+dfsg-16
- HIGH8.8CVE-2017-11450coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspe…from 0, < 8:6.9.7.4+dfsg-12
- HIGH8.8CVE-2017-11449coders/mpc.c in ImageMagick before 7.0.6-1 does not enable seekable streams and thus cannot validate blob sizes, which allows remote attack…from 0, < 8:6.9.7.4+dfsg-12
- HIGH8.8CVE-2017-11170The ReadTGAImage function in coders\tga.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via inval…from 0, < 8:6.9.7.4+dfsg-12
- from 0, < 8:6.8.9.9-5+deb8u10
- from 0, < 8:6.7.7.10-5+deb7u16
- from 0, < 8:6.9.7.4+dfsg-12
- HIGH8.8CVE-2016-8677The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact…from 0, < 8:6.9.6.2+dfsg-1
- HIGH8.8CVE-2016-8862The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact vi…from 0, < 8:6.9.6.6+dfsg-1
- HIGH8.8CVE-2016-6491Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in ImageMagick before 6.9.5-4 and 7.x before 7.0.2-6 allows remote…from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.7.7.10-5+deb7u7
- HIGH8.8CVE-2016-4562The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain v…from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.6.0.4-3+squeeze1
- from 0, < 8:6.6.9.7-6
- HIGH8.6CVE-2026-25965ImageMagick: Policy bypass through path traversal allows reading restricted content despite secured policyfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- HIGH8.2CVE-2026-25794ImageMagick has heap-buffer-overflow via signed integer overflow in WriteUHDRImage when writing UHDR images with large dimensionsfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- HIGH8.1CVE-2026-28693ImageMagick: Integer overflow in DIB coder can result in out of bounds read or writefrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- HIGH8.1CVE-2019-11598In ImageMagick 7.0.8-40 Q16, there is a heap-based buffer over-read in the function WritePNMImage of coders/pnm.c, which allows an attacker…from 0, < 8:6.9.11.24+dfsg-1
- HIGH8.1CVE-2019-11597In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attack…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u7
- from 0, < 8:6.9.10.23+dfsg-2.1
- HIGH8.1CVE-2017-14607In ImageMagick 7.0.7-4 Q16, an out of bounds read flaw related to ReadTIFFImage has been reported in coders/tiff.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH8.1CVE-2016-5688The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecifie…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2022-32547In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- HIGH7.8CVE-2022-32546A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, whe…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- HIGH7.8CVE-2022-32545A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, whe…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- HIGH7.8CVE-2020-29599ImageMagick before 6.9.11-40 and 7.x before 7.0.10-40 mishandles the -authenticate option, which allows setting a password for password-pro…from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.10.23+dfsg-2.1+deb10u2
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.7.7.10+dfsg-1
- from 0, < 8:6.6.0.4-3+squeeze4
- HIGH7.8CVE-2019-13307ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling rows.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-13306ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of off-by-one errors.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-13305ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced strncpy and an off-by-on…from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-13304ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced assignment.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-12979ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the SyncImageSettings function in MagickCore/image.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-12978ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the ReadPANGOImage function in coders/pango.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2019-12977ImageMagick 7.0.8-34 has a "use of uninitialized value" vulnerability in the WriteJP2Image function in coders/jp2.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.8CVE-2014-9825Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerabil…from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9824Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted psd file, a different vulnerabil…from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9823Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerabi…from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9822Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted quantum file.from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9821Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9820Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pnm file.from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9819Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerabi…from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2014-9817Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted pdb file.from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2017-5510coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds writ…from 0, < 8:6.9.7.4+dfsg-1
- HIGH7.8CVE-2017-5509coders/psd.c in ImageMagick allows remote attackers to have unspecified impact via a crafted PSD file, which triggers an out-of-bounds writ…from 0, < 8:6.9.7.4+dfsg-1
- HIGH7.8CVE-2017-5506Double free vulnerability in magick/profile.c in ImageMagick allows remote attackers to have unspecified impact via a crafted file.from 0, < 8:6.9.7.4+dfsg-1
- from 0, < 8:6.7.7.10-5+deb7u10
- from 0, < 8:6.8.9.9-5+deb8u6
- from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10057Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial o…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10056Buffer overflow in the sixel_decode function in coders/sixel.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of s…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10055Buffer overflow in the WritePDBImage function in coders/pdb.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of se…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10054Buffer overflow in the WriteMAPImage function in coders/map.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of se…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10052Buffer overflow in the WriteProfile function in coders/jpeg.c in ImageMagick before 6.9.5-6 allows remote attackers to cause a denial of se…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10051Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10050Heap-based buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick 6.9.4-8 allows remote attackers to cause a denial of…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10049Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of ser…from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-4
- from 0, < 8:6.8.9.9-4
- from 0, < 8:6.8.9.9-4
- from 0, < 8:6.8.9.9-4
- HIGH7.8CVE-2016-10065The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10064Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-10063Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.8CVE-2016-8707An exploitable out of bounds write exists in the handling of compressed TIFF images in ImageMagicks's convert utility.from 0, < 8:6.9.7.0+dfsg-2
- HIGH7.8CVE-2012-1185Multiple integer overflows in (1) magick/profile.c or (2) magick/property.c in ImageMagick 6.7.5 and earlier allow remote attackers to caus…from 0, < 8:6.6.9.7-7
- HIGH7.8CVE-2007-4988Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary cod…from 0, < 7:6.2.4.5.dfsg1-2
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u7
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u2
- from 0
- HIGH7.5CVE-2026-46520ImageMagick: Heap Buffer Over-Write in IPL decoder when reading multiple images of different dimensionsfrom 0
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- HIGH7.5CVE-2026-25989ImageMagick: Integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoderfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- HIGH7.5CVE-2026-25985ImageMagick: Memory allocation with excessive without limits in the internal SVG decoderfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.6+deb12u7
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- HIGH7.5CVE-2025-69204ImageMagick is free and open-source software used for editing and manipulating digital images.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- HIGH7.5CVE-2025-66628ImageMagick is vulnerable to an integer Overflow in TIM decoder leading to out of bounds read (32-bit only)from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- HIGH7.5CVE-2025-57803ImageMagick (WriteBMPImage): 32-bit integer overflow when writing BMP scanline stride → heap buffer overflowfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- HIGH7.5CVE-2025-55298ImageMagick has a Format String Bug in InterpretImageFilename leads to arbitrary code executionfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u1
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u5
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u5
- HIGH7.5CVE-2021-40211An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u4
- HIGH7.5CVE-2021-20312A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger unde…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u4
- HIGH7.5CVE-2021-20311A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero in sRGBTransformImage() in the MagickCore/colorspace.c…from 0
- HIGH7.5CVE-2021-20309A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-e…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- HIGH7.5CVE-2017-12806In ImageMagick 7.0.6-6, a memory exhaustion vulnerability was found in the function format8BIM, which allows attackers to cause a denial of…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.7.4+dfsg-11+deb9u9
- from 0, < 8:6.9.9.34+dfsg-3
- HIGH7.5CVE-2019-7175In ImageMagick before 7.0.8-25, some memory leaks exist in DecodeImage in coders/pcd.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.5CVE-2019-7398In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage in coders/dib.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.5CVE-2019-7397In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.5CVE-2019-7396In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.5CVE-2019-7395In ImageMagick before 7.0.8-25, a memory leak exists in WritePSDChannel in coders/psd.c.from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.5CVE-2017-15033ImageMagick version 7.0.7-2 contains a memory leak in ReadYUVImage in coders/yuv.c.from 0, < 8:6.9.9.34+dfsg-3
- HIGH7.5CVE-2017-14739The AcquireResampleFilterThreadSet function in magick/resample-private.h in ImageMagick 7.0.7-4 mishandles failed memory allocation, which…from 0, < 8:6.9.9.34+dfsg-3
- HIGH7.5CVE-2017-14137ReadWEBPImage in coders/webp.c in ImageMagick 7.0.6-5 has an issue where memory allocation is excessive because it depends only on a length…from 0, < 8:6.9.9.34+dfsg-3
- HIGH7.5CVE-2017-13143In ImageMagick before 6.9.7-6 and 7.x before 7.0.4-6, the ReadMATImage function in coders/mat.c uses uninitialized data, which might allow…from 0, < 8:6.9.7.4+dfsg-14
- HIGH7.5CVE-2017-12435In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadSUNImage in coders/sun.c, which allows attackers to…from 0, < 8:6.9.7.4+dfsg-16
- HIGH7.5CVE-2017-12430In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to…from 0, < 8:6.9.7.4+dfsg-13
- HIGH7.5CVE-2017-12429In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers…from 0, < 8:6.9.7.4+dfsg-13
- HIGH7.5CVE-2017-12428In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause…from 0, < 8:6.9.7.4+dfsg-13
- HIGH7.5CVE-2017-12418ImageMagick 7.0.6-5 has memory leaks in the parse8BIMW and format8BIM functions in coders/meta.c, related to the WriteImage function in Mag…from 0, < 8:6.9.9.34+dfsg-3
- HIGH7.5CVE-2016-7539Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via u…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.5CVE-2017-11188The ReadDPXImage function in coders\dpx.c in ImageMagick 7.0.6-0 has a large loop vulnerability that can cause CPU exhaustion via a crafted…from 0, < 8:6.9.7.4+dfsg-12
- from 0, < 8:6.9.7.4+dfsg-9
- HIGH7.5CVE-2017-7619In ImageMagick 7.0.4-9, an infinite loop can occur because of a floating-point rounding error in some of the color algorithms.from 0, < 8:6.9.7.4+dfsg-4
- HIGH7.5CVE-2014-9804vision.c in ImageMagick allows remote attackers to cause a denial of service (infinite loop) via vectors related to "too many object."from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2017-5507Memory leak in coders/mpc.c in ImageMagick before 6.9.7-4 and 7.x before 7.0.4-4 allows remote attackers to cause a denial of service (memo…from 0, < 8:6.9.7.4+dfsg-1
- HIGH7.5CVE-2016-10146Multiple memory leaks in the caption and label handling code in ImageMagick allow remote attackers to cause a denial of service (memory con…from 0, < 8:6.9.7.0+dfsg-2
- HIGH7.5CVE-2016-10048Directory traversal vulnerability in magick/module.c in ImageMagick 6.9.4-7 allows remote attackers to load arbitrary modules via unspecifi…from 0, < 8:6.9.5.7+dfsg-1
- HIGH7.5CVE-2014-9839magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access).from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9851ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (application crash).from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9850Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9849The png coder in ImageMagick allows remote attackers to cause a denial of service (crash).from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9848Memory leak in ImageMagick allows remote attackers to cause a denial of service (memory consumption).from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9842Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memo…from 0, < 8:6.8.9.9-4
- HIGH7.5CVE-2014-9854coders/tiff.c in ImageMagick allows remote attackers to cause a denial of service (application crash) via vectors related to the "identific…from 0, < 8:6.8.9.9-4
- from 0, < 8:6.6.0.4-3+squeeze7
- from 0, < 8:6.8.9.9-7
- from 0, < 8:6.8.9.9-5+deb8u8
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.9.7.4+dfsg-2
- HIGH7.5CVE-2016-10067magick/memory.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via vectors involvin…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.5CVE-2016-6823Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (crash) via crafted h…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.5CVE-2016-5842MagickCore/property.c in ImageMagick before 7.0.2-1 allows remote attackers to obtain sensitive memory information via vectors involving th…from 0, < 8:6.9.6.2+dfsg-2
- HIGH7.5CVE-2012-1610Integer overflow in the GetEXIFProperty function in magick/property.c in ImageMagick before 6.7.6-4 allows remote attackers to cause a deni…from 0, < 8:6.7.4.0-4
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- HIGH7.1CVE-2026-28494ImageMagick vulnerable to stack corruption through long morphology kernel names or arraysfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.10.23+dfsg-2.1+deb10u7
- HIGH7.1CVE-2022-1114A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.1CVE-2020-13902ImageMagick 7.0.9-27 through 7.0.10-17 has a heap-based buffer over-read in BlobToStringInfo in MagickCore/string.c during TIFF image decod…from 0, < 8:6.9.11.24+dfsg-1
- HIGH7.1CVE-2019-10131An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.…from 0, < 8:6.9.10.2+dfsg-2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM6.8CVE-2026-30937ImageMagick has heap buffer overflow in WriteXWDImage due to CARD32 arithmetic overflow in bytes_per_line calculationfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u7
- MEDIUM6.8CVE-2026-28686ImageMagick: Write heap-buffer-overflow in PCL encoder via undersized output bufferfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM6.7CVE-2026-32259ImageMagick is free and open-source software used for editing and manipulating digital images.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM6.5CVE-2026-28493ImageMagick has Integer Overflow leading to out of bounds write in SIXEL decoderfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u7
- MEDIUM6.5CVE-2026-28493ImageMagick has Integer Overflow leading to out of bounds write in SIXEL decoderfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u7
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM6.5CVE-2026-25898ImageMagick has Global Buffer Overflow (OOB Read) via Negative Pixel Index in UIL and XPM Writerfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM6.5CVE-2026-25897ImageMagick: Heap overflow in sun decoder on 32-bit systems may result in out of bounds writefrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM6.5CVE-2026-23952ImageMagick has a NULL pointer dereference in MSL parser via <comment> tag before image loadfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u9
- MEDIUM6.5CVE-2026-22770ImageMagick releases an invalid pointer in BilateralBlur when memory allocation failsfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u5
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u1
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u1
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u1
- from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u14
- MEDIUM6.5CVE-2016-7524coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7523coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-1
- MEDIUM6.5CVE-2019-16713ImageMagick 7.0.8-43 has a memory leak in coders/dot.c, as demonstrated by PingImage in MagickCore/constitute.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-16712ImageMagick 7.0.8-43 has a memory leak in Huffman2DEncodeImage in coders/ps3.c, as demonstrated by WritePS3Image.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-16711ImageMagick 7.0.8-40 has a memory leak in Huffman2DEncodeImage in coders/ps2.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-16710ImageMagick 7.0.8-35 has a memory leak in coders/dot.c, as demonstrated by AcquireMagickMemory in MagickCore/memory.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-16709ImageMagick 7.0.8-35 has a memory leak in coders/dps.c, as demonstrated by XCreateImage.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-16708ImageMagick 7.0.8-35 has a memory leak in magick/xwindow.c, related to XCreateImage.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-15139The XWD image (X Window System window dumping file) parsing component in ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-ser…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-14981In ImageMagick 7.x before 7.0.8-41 and 6.x before 6.9.10-41, there is a divide-by-zero vulnerability in the MeanShiftImage function.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13454ImageMagick 7.0.1-0 to 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13311ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of a wand/mogrify.c error.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13310ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13309ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of mishandling the NoSuchImage error in CLIListOperatorImages in M…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13301ImageMagick 7.0.8-50 Q16 has memory leaks in AcquireMagickMemory because of an AnnotateImage error.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-13137ImageMagick before 7.0.8-50 has a memory leak vulnerability in the function ReadPSImage in coders/ps.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM6.5CVE-2019-11472ReadXWDImage in coders/xwd.c in the XWD image parsing component of ImageMagick 7.0.8-41 Q16 allows attackers to cause a denial-of-service (…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u18
- MEDIUM6.5CVE-2018-20467In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption.from 0, < 8:6.9.10.23+dfsg-1
- MEDIUM6.5CVE-2018-18544There is a memory leak in the function WriteMSLImage of coders/msl.c in ImageMagick 7.0.8-13 Q16, and the function ProcessMSLScript of code…from 0, < 8:6.9.10.14+dfsg-1
- from 0, < 8:6.9.10.14+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u15
- MEDIUM6.5CVE-2018-18024In ImageMagick 7.0.8-13 Q16, there is an infinite loop in the ReadBMPImage function of the coders/bmp.c file.from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-18023In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows attackers…from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-18016ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c.from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-17967ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/bgr.c.from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-17966ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c.from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-17965ImageMagick 7.0.7-28 has a memory leak vulnerability in WriteSGIImage in coders/sgi.c.from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-16750In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found.from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-16749In ImageMagick 7.0.7-29 and earlier, a missing NULL check in ReadOneJNGImage in coders/png.c allows an attacker to cause a denial of servic…from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-16645There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick…from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-16644There is a missing check for length in the functions ReadDCMImage of coders/dcm.c and ReadPICTImage of coders/pict.c in ImageMagick 7.0.8-1…from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-16643The functions ReadDCMImage in coders/dcm.c, ReadPWPImage in coders/pwp.c, ReadCALSImage in coders/cals.c, and ReadPICTImage in coders/pict.…from 0, < 8:6.9.10.8+dfsg-1
- MEDIUM6.5CVE-2018-16642The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image fil…from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-16640ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c.from 0, < 8:6.9.10.8+dfsg-1
- MEDIUM6.5CVE-2018-16323ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel…from 0, < 8:6.9.10.14+dfsg-1
- MEDIUM6.5CVE-2018-15607In ImageMagick 7.0.8-11 Q16, a tiny input file 0x50 0x36 0x36 0x36 0x36 0x4c 0x36 0x38 0x36 0x36 0x36 0x36 0x36 0x36 0x1f 0x35 0x50 0x00 ca…from 0
- from 0, < 8:6.9.10.8+dfsg-1
- from 0, < 8:6.9.10.8+dfsg-1
- from 0, < 8:6.9.10.8+dfsg-1
- MEDIUM6.5CVE-2018-14434ImageMagick 7.0.8-4 has a memory leak for a colormap in WriteMPCImage in coders/mpc.c.from 0, < 8:6.9.10.8+dfsg-1
- MEDIUM6.5CVE-2018-13153In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c.from 0, < 8:6.9.10.8+dfsg-1
- MEDIUM6.5CVE-2018-11656In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was found in the function ReadDCMImage in coders/dcm.c, which allows attack…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-11655In ImageMagick 7.0.7-20 Q16 x86_64, a memory leak vulnerability was found in the function GetImagePixelCache in MagickCore/cache.c, which a…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.39+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u13
- from 0, < 8:6.9.7.4+dfsg-11+deb9u5
- MEDIUM6.5CVE-2017-18273In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-22, an infinite loop vulnerability was found in the function ReadTXTImage in coders/txt.c, which…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-18272In ImageMagick 7.0.7-16 Q16 x86_64 2017-12-25, there is a use-after-free in ReadOneMNGImage in coders/png.c, which allows attackers to caus…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.7.7.10-5+deb7u22
- from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-10805ImageMagick version 7.0.7-28 contains a memory leak in ReadYCBCRImage in coders/ycbcr.c.from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-10804ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c.from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-10177In ImageMagick 7.0.7-28, there is an infinite loop in the ReadOneMNGImage function of the coders/png.c file.from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2018-9133ImageMagick 7.0.7-26 Q16 has excessive iteration in the DecodeLabImage and EncodeLabImage functions (coders/tiff.c), which results in a han…from 0, < 8:6.9.10.2+dfsg-2
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.39+dfsg-1
- from 0, < 8:6.7.7.10-5+deb7u21
- from 0, < 8:6.9.9.39+dfsg-1
- MEDIUM6.5CVE-2018-6405In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-18029In ImageMagick 7.0.6-10 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attacke…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-18028In ImageMagick 7.0.7-1 Q16, a memory exhaustion vulnerability was found in the function ReadTIFFImage in coders/tiff.c, which allow remote…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-18027In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allow remote attacker…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-5358ImageMagick 7.0.7-22 Q16 has memory leaks in the EncodeImageAttributes function in coders/json.c, as demonstrated by the ReadPSDLayersInter…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-5357ImageMagick 7.0.7-22 Q16 has memory leaks in the ReadDCMImage function in coders/dcm.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-5247In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2018-5246In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-18022In ImageMagick 7.0.7-12 Q16, there are memory leaks in MontageImageCommand in MagickWand/montage.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-1000476ImageMagick 7.0.7-12 Q16, a CPU exhaustion vulnerability was found in the function ReadDDSInfo in coders/dds.c, which allows attackers to c…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.7.4+dfsg-11+deb9u10
- from 0, < 8:6.8.9.9-5+deb8u16
- from 0, < 8:6.7.7.10-5+deb7u20
- MEDIUM6.5CVE-2017-18008In ImageMagick 7.0.7-17 Q16, there is a Memory Leak in ReadPWPImage in coders/pwp.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17934ImageMagick 7.0.7-17 Q16 x86_64 has memory leaks in coders/msl.c, related to MSLPopImage and ProcessMSLScript, and associated with mishandl…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17914In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a d…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17887In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function GetImagePixelCache in magick/cache.c, which allows attac…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17886In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attacker…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17885In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPICTImage in coders/pict.c, which allows attackers t…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17884In ImageMagick 7.0.7-16 Q16, a memory leak vulnerability was found in the function WriteOnePNGImage in coders/png.c, which allows attackers…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17883In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadPGXImage in coders/pgx.c, which allows attackers to…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17882In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17881In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17682In ImageMagick 7.0.7-12 Q16, a large loop vulnerability was found in the function ExtractPostscript in coders/wpg.c, which allows attackers…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17681In ImageMagick 7.0.7-12 Q16, an infinite loop vulnerability was found in the function ReadPSDChannelZip in coders/psd.c, which allows attac…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-17680In ImageMagick 7.0.7-12 Q16, a memory leak vulnerability was found in the function ReadXPMImage in coders/xpm.c, which allows attackers to…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.7.7.10-5+deb7u19
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.7.7.10-5+deb7u18
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14989A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a craf…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14741The ReadCAPTIONImage function in coders/caption.c in ImageMagick 7.0.7-3 allows remote attackers to cause a denial of service (infinite loo…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14684In ImageMagick 7.0.7-4 Q16, a memory leak vulnerability was found in the function ReadVIPSImage in coders/vips.c, which allows attackers to…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14531ImageMagick 7.0.7-0 has a memory exhaustion issue in ReadSUNImage in coders/sun.c.from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.7.4+dfsg-11+deb9u11
- from 0, < 8:6.9.10.2+dfsg-2
- MEDIUM6.5CVE-2017-14505DrawGetStrokeDashArray in wand/drawing-wand.c in ImageMagick 7.0.7-1 mishandles certain NULL arrays, which allows attackers to perform Deni…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14400In ImageMagick 7.0.7-1 Q16, the PersistPixelCache function in magick/cache.c mishandles the pixel cache nexus, which allows remote attacker…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14343ImageMagick 7.0.6-6 has a memory leak vulnerability in ReadXCFImage in coders/xcf.c via a crafted xcf image file.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14342ImageMagick 7.0.6-6 has a memory exhaustion vulnerability in ReadWPGImage in coders/wpg.c via a crafted wpg image file.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14341ImageMagick 7.0.6-6 has a large loop vulnerability in ReadWPGImage in coders/wpg.c, causing CPU exhaustion via a crafted wpg image file.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14326In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to c…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14325In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function PersistPixelCache in magick/cache.c, which allows attacke…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14324In ImageMagick 7.0.7-1 Q16, a memory leak vulnerability was found in the function ReadMPCImage in coders/mpc.c, which allows attackers to c…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14249ImageMagick 7.0.6-8 Q16 mishandles EOF checks in ReadMPCImage in coders/mpc.c, leading to division by zero in GetPixelCacheTileSize in Magi…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14175In coders/xbm.c in ImageMagick 7.0.6-1 Q16, a DoS in ReadXBMImage() due to lack of an EOF (End of File) check might cause huge CPU consumpt…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14174In coders/psd.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSDLayersInternal() due to lack of an EOF (End of File) check might cause huge CPU…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14173In the function ReadTXTImage() in coders/txt.c in ImageMagick 7.0.6-10, an integer overflow might occur for the addition operation "GetQuan…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14172In coders/ps.c in ImageMagick 7.0.7-0 Q16, a DoS in ReadPSImage() due to lack of an EOF (End of File) check might cause huge CPU consumptio…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14139ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12693The ReadBMPImage function in coders/bmp.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service (memory consumption)…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12692The ReadVIFFImage function in coders/viff.c in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service (memory consumption…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.7.7.10-5+deb7u17
- from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-14060In ImageMagick 7.0.6-10, a NULL Pointer Dereference issue is present in the ReadCUTImage function in coders/cut.c that could allow an attac…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13769The WriteTHUMBNAILImage function in coders/thumbnail.c in ImageMagick through 7.0.6-10 allows an attacker to cause a denial of service (buf…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13768Null Pointer Dereference in the IdentifyImage function in MagickCore/identify.c in ImageMagick through 7.0.6-10 allows an attacker to perfo…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13758In ImageMagick 7.0.6-10, there is a heap-based buffer overflow in the TracePoint() function in MagickCore/draw.c.from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12875The WritePixelCachePixels function in ImageMagick 7.0.6-6 allows remote attackers to cause a denial of service (CPU consumption) via a craf…from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.7.4+dfsg-11+deb9u4
- MEDIUM6.5CVE-2017-13658In ImageMagick before 6.9.9-3 and 7.x before 7.0.6-3, there is a missing NULL check in the ReadMATImage function in coders/mat.c, leading t…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-13145In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function in coders/jp2.c does not properly validate the channel geom…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-13144In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are t…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-13142In ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1, a crafted PNG file could trigger a crash because there was an insufficient check for…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-13141In ImageMagick before 6.9.9-4 and 7.x before 7.0.6-4, a crafted file could trigger a memory leak in ReadOnePNGImage in coders/png.c.from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-13140In ImageMagick before 6.9.9-1 and 7.x before 7.0.6-2, the ReadOnePNGImage function in coders/png.c allows remote attackers to cause a denia…from 0, < 8:6.9.7.4+dfsg-15
- from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13133In ImageMagick 7.0.6-8, the load_level function in coders/xcf.c lacks offset validation, which allows attackers to cause a denial of servic…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13131In ImageMagick 7.0.6-8, a memory leak vulnerability was found in the function ReadMIFFImage in coders/miff.c, which allows attackers to cau…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13062In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function formatIPTC in coders/meta.c, which allows attackers to cause…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13061In ImageMagick 7.0.6-5, a length-validation vulnerability was found in the function ReadPSDLayersInternal in coders/psd.c, which allows att…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13060In ImageMagick 7.0.6-5, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13059In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to c…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-13058In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WritePCXImage in coders/pcx.c, which allows attackers to caus…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12676In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to ca…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-12675In ImageMagick 7.0.6-3, a missing check for multidimensional data was found in coders/mat.c, leading to a memory leak in the function ReadI…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-12674In ImageMagick 7.0.6-2, a CPU exhaustion vulnerability was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to ca…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12673In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadOneMNGImage in coders/png.c, which allows attackers to ca…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-12672In ImageMagick 7.0.6-3, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-12671In ImageMagick 7.0.6-3, a missing NULL assignment was found in coders/png.c, leading to an invalid free in the function RelinquishMagickMem…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-12670In ImageMagick 7.0.6-3, missing validation was found in coders/mat.c, leading to an assertion failure in the function DestroyImage in Magic…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-12654The ReadPICTImage function in coders/pict.c in ImageMagick 7.0.6-3 allows attackers to cause a denial of service (memory leak) via a crafte…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-12643ImageMagick 7.0.6-1 has a memory exhaustion vulnerability in ReadOneJNGImage in coders\png.c.from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-12566In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMVGImage in coders/mvg.c, which allows attackers to cause…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-12565In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadOneJNGImage in coders/png.c, which allows attackers to ca…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-12564In ImageMagick 7.0.6-2, a memory leak vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers to cause…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-12563In ImageMagick 7.0.6-2, a memory exhaustion vulnerability was found in the function ReadPSDImage in coders/psd.c, which allows attackers to…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-12434In ImageMagick 7.0.6-1, a missing NULL check vulnerability was found in the function ReadMATImage in coders/mat.c, which allows attackers t…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-12433In ImageMagick 7.0.6-1, a memory leak vulnerability was found in the function ReadPESImage in coders/pes.c, which allows attackers to cause…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-12432In ImageMagick 7.0.6-1, a memory exhaustion vulnerability was found in the function ReadPCXImage in coders/pcx.c, which allows attackers to…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-12431In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to ca…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-12427The ProcessMSLScript function in coders/msl.c in ImageMagick before 6.9.9-5 and 7.x before 7.0.6-5 allows remote attackers to cause a denia…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-12140The ReadDCMImage function in coders\dcm.c in ImageMagick 7.0.6-1 has an integer signedness error leading to excessive memory consumption vi…from 0, < 8:6.9.9.34+dfsg-3
- MEDIUM6.5CVE-2017-11755The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via…from 0
- MEDIUM6.5CVE-2017-11754The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via…from 0
- MEDIUM6.5CVE-2017-11752The ReadMAGICKImage function in coders/magick.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) v…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-11751The WritePICONImage function in coders/xpm.c in ImageMagick 7.0.6-4 allows remote attackers to cause a denial of service (memory leak) via…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-11750The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL…from 0, < 8:6.9.7.4+dfsg-16
- MEDIUM6.5CVE-2017-11724The ReadMATImage function in coders/mat.c in ImageMagick through 6.9.9-3 and 7.x through 7.0.6-3 has memory leaks involving the quantum_inf…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-11644When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadMATImage() function in coders/mat.c.from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-11640When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to an address access exception in the WritePTIFImage() function i…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-11639When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage() function…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-11539When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the ReadOnePNGImage() function in coders/png.…from 0, < 8:6.9.7.4+dfsg-15
- MEDIUM6.5CVE-2017-11537When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Floating Point Exception (FPE) in the WritePALMImage() funct…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11536When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteJP2Image() function in coders/jp2.c.from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11535When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function i…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11534When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the lite_font_map() function in coders/wmf.c.from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11533When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteUILImage() function…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11532When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteMPCImage() function in coders/mpc.c.from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11531When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a Memory Leak in the WriteHISTOGRAMImage() function in coders/…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11530The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11529The ReadMATImage function in coders/mat.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11528The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11527The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11526The ReadOneMNGImage function in coders/png.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11525The ReadCINImage function in coders/cin.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11524The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11523The ReadTXTImage function in coders/txt.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial…from 0, < 8:6.9.7.4+dfsg-14
- MEDIUM6.5CVE-2017-11505The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a deni…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11478The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a de…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11448The ReadJPEGImage function in coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to obtain sensitive information from unin…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11447The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service.from 0, < 8:6.9.7.4+dfsg-12
- from 0, < 8:6.9.7.4+dfsg-11+deb9u2
- from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-11360The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge…from 0, < 8:6.9.7.4+dfsg-12
- from 0, < 8:6.8.9.9-5+deb8u11
- from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-11166The ReadXWDImage function in coders\xwd.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a cra…from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-11141The ReadMATImage function in coders\mat.c in ImageMagick 7.0.5-6 has a memory leak vulnerability that can cause memory exhaustion via a cra…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-9501In ImageMagick 7.0.5-7 Q16, an assertion failure was found in the function LockSemaphoreInfo, which allows attackers to cause a denial of s…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-9500In ImageMagick 7.0.5-8 Q16, an assertion failure was found in the function ResetImageProfileIterator, which allows attackers to cause a den…from 0, < 8:6.9.7.4+dfsg-13
- MEDIUM6.5CVE-2017-9440In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPSDChannel in coders/psd.c, which allows attackers to cause a denial of…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-9439In ImageMagick 7.0.5-5, a memory leak was found in the function ReadPDBImage in coders/pdb.c, which allows attackers to cause a denial of s…from 0, < 8:6.9.7.4+dfsg-12
- MEDIUM6.5CVE-2017-9409In ImageMagick 7.0.5-5, the ReadMPCImage function in mpc.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-11
- MEDIUM6.5CVE-2017-9407In ImageMagick 7.0.5-5, the ReadPALMImage function in palm.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-11
- MEDIUM6.5CVE-2017-9405In ImageMagick 7.0.5-5, the ReadICONImage function in icon.c:452 allows attackers to cause a denial of service (memory leak) via a crafted…from 0, < 8:6.9.7.4+dfsg-11
- MEDIUM6.5CVE-2017-9262In ImageMagick 7.0.5-6 Q16, the ReadJNGImage function in coders/png.c allows attackers to cause a denial of service (memory leak) via a cra…from 0, < 8:6.9.7.4+dfsg-10
- from 0, < 8:6.7.7.10-5+deb7u15
- from 0, < 8:6.9.7.4+dfsg-10
- MEDIUM6.5CVE-2017-9144In ImageMagick 7.0.5-5, a crafted RLE image can trigger a crash because of incorrect EOF handling in coders/rle.c.from 0, < 8:6.9.7.4+dfsg-9
- MEDIUM6.5CVE-2017-9143In ImageMagick 7.0.5-5, the ReadARTImage function in coders/art.c allows attackers to cause a denial of service (memory leak) via a crafted…from 0, < 8:6.9.7.4+dfsg-9
- MEDIUM6.5CVE-2017-9142In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of mis…from 0, < 8:6.9.7.4+dfsg-9
- MEDIUM6.5CVE-2017-9141In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the ResetImageProfileIterator function in MagickCore/profi…from 0, < 8:6.9.7.4+dfsg-9
- MEDIUM6.5CVE-2017-8830In ImageMagick 7.0.5-6, the ReadBMPImage function in bmp.c:1379 allows attackers to cause a denial of service (memory leak) via a crafted f…from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8765The function named ReadICONImage in coders\icon.c in ImageMagick 7.0.5-5 has a memory leak vulnerability which can cause memory exhaustion…from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8357In ImageMagick 7.0.5-5, the ReadEPTImage function in ept.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8356In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8355In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8354In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8353In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8352In ImageMagick 7.0.5-5, the ReadXWDImage function in xwd.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8351In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8350In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8349In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8348In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8347In ImageMagick 7.0.5-5, the ReadEXRImage function in exr.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8346In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8345In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8344In ImageMagick 7.0.5-5, the ReadPCXImage function in pcx.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2017-8343In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file.from 0, < 8:6.9.7.4+dfsg-7
- MEDIUM6.5CVE-2016-7540coders/rgf.c in ImageMagick before 6.9.4-10 allows remote attackers to cause a denial of service (assertion failure) by converting an image…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7538coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7536magick/profile.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a crafted profile.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7535coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PSD file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7534The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7532coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted PSD file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7530The quantum handling code in ImageMagick allows remote attackers to cause a denial of service (divide-by-zero error or out-of-bounds write)…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7527coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7526coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7525Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a c…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7521Heap-based buffer overflow in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a c…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7520Heap-based buffer overflow in coders/hdr.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a c…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7518The ReadSUNImage function in coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a cr…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7517The EncodeImage function in coders/pict.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a cr…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7516The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7514The ReadPSDChannelPixels function in coders/psd.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read)…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7513Off-by-one error in magick/cache.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via unspecified…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-5010coders/tiff.c in ImageMagick before 6.9.5-3 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted TIFF fi…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2015-8959coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS fi…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2015-8958coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application cr…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2015-8957Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted S…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7537MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted PDB file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7533The ReadWPGImage function in coders/wpg.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a cr…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7531MagickCore/memory.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted PDB file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7529coders/xcf.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted XCF file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7528The ReadVIFFImage function in coders/viff.c in ImageMagick allows remote attackers to cause a denial of service (segmentation fault) via a…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7522The ReadPSDImage function in MagickCore/locale.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) v…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7519The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a cr…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7515The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via vect…from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-5+deb8u4
- from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2017-7943The ReadSVGImage function in svg.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted fi…from 0, < 8:6.9.7.4+dfsg-6
- MEDIUM6.5CVE-2017-7942The ReadAVSImage function in avs.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted fi…from 0, < 8:6.9.7.4+dfsg-6
- MEDIUM6.5CVE-2017-7941The ReadSGIImage function in sgi.c in ImageMagick 7.0.5-4 allows remote attackers to consume an amount of available memory via a crafted fi…from 0, < 8:6.9.7.4+dfsg-6
- MEDIUM6.5CVE-2014-9837coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file.from 0, < 8:6.8.9.9-4
- from 0, < 8:6.8.9.9-1
- from 0, < 8:6.7.7.10-5+deb7u13
- from 0, < 8:6.9.7.4+dfsg-4
- from 0, < 8:6.7.7.10-5+deb7u13
- from 0, < 8:6.8.9.9-5+deb8u9
- MEDIUM6.5CVE-2014-9829coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file.from 0, < 8:6.8.9.9-4
- MEDIUM6.5CVE-2015-8896Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application c…from 0, < 8:6.8.9.9-7
- MEDIUM6.5CVE-2016-10061The ReadGROUP4Image function in coders/tiff.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which a…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-10060The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc funct…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-9559coders/tiff.c in ImageMagick before 7.0.3.7 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a…from 0, < 8:6.9.6.5+dfsg-1
- MEDIUM6.5CVE-2015-8903The ReadVICARImage function in coders/vicar.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (…from 0, < 8:6.8.9.9-6
- MEDIUM6.5CVE-2015-8902The ReadBlobByte function in coders/pdb.c in ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infi…from 0, < 8:6.8.9.9-6
- MEDIUM6.5CVE-2015-8901ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file.from 0, < 8:6.8.9.9-6
- MEDIUM6.5CVE-2016-7799MagickCore/profile.c in ImageMagick before 7.0.3-2 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2016-7101The SGI coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (out-of-bounds read) via a large row valu…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM6.5CVE-2012-1798The TIFFGetEXIFProperties function in coders/tiff.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (out…from 0, < 8:6.7.4.0-4
- MEDIUM6.5CVE-2012-0260The JPEGWarningHandler function in coders/jpeg.c in ImageMagick before 6.7.6-3 allows remote attackers to cause a denial of service (memory…from 0, < 8:6.7.4.0-4
- from 0, < 8:6.6.0.4-3+squeeze3
- from 0, < 8:6.7.4.0-4
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u9
- from 0
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u8
- MEDIUM6.2CVE-2026-40169ImageMagick has a heap buffer overflow (WRITE) in the YAML and JSON encoders.from 0, < 8:7.1.1.43+dfsg1-1+deb13u8
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM6.2CVE-2026-26283ImageMagick has a possible infinite loop in its JPEG encoder when using `jpeg:extent`from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM6.2CVE-2026-26066ImageMagick has infinite loop when writing IPTCTEXT leads to denial of service via crafted profilefrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.6.0.4-3+squeeze5
- from 0, < 8:6.8.9.9-3
- MEDIUM6.1CVE-2025-55160ImageMagick has Undefined Behavior (function-type-mismatch) in CloneSplayTreefrom 0
- MEDIUM6.1CVE-2020-25664In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.9CVE-2026-33900ImageMagick has a heap overflow caused by integer overflow/wraparound in viff encoder on 32-bit buildsfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- MEDIUM5.9CVE-2026-25966ImageMagick's Security Policy Bypass through config/policy-secure.xml via "fd handler" leads to stdin/stdout accessfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- from 0
- MEDIUM5.7CVE-2026-45359ImageMagick: Out-of-Bounds Read in connected components when the user supplies an invalid keep-top definefrom 0
- MEDIUM5.7CVE-2026-31853ImageMagick is vulnerable to heap buffer over-write on 32-bit systems in SFW decoderfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM5.7CVE-2026-30883ImageMagick is vulnerable to Heap Overflow when writing extremely large image profile in the PNG encoderfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.5CVE-2026-46521ImageMagick: Heap Buffer Over-Write in MIFF encoder when using LZMA compressionfrom 0
- MEDIUM5.5CVE-2026-42050ImageMagick is free and open-source software used for editing and manipulating digital images.from 0
- MEDIUM5.5CVE-2026-40311ImageMagick has a heap-use-after-free via XMP profile could result in a crash when printing the values.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- MEDIUM5.5CVE-2026-40183ImageMagick has a heap buffer overflow when encoding JXL image with a 16-bit floatfrom 0, < 8:7.1.1.43+dfsg1-1+deb13u8
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u8
- MEDIUM5.5CVE-2023-1289ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoSfrom 0, < 8:6.9.10.23+dfsg-2.1+deb10u6
- MEDIUM5.5CVE-2023-1289ImageMagick: Specially crafted SVG leads to segmentation fault and generate trash files in "/tmp", possible to leverage DoSfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u9
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u9
- from 0, < 8:6.9.11.60+dfsg-1.6+deb12u6
- MEDIUM5.5CVE-2025-55005ImageMagick is free and open-source software used for editing and manipulating digital images.from 0, < 8:7.1.1.43+dfsg1-1+deb13u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- MEDIUM5.5CVE-2023-3428A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- MEDIUM5.5CVE-2023-3745A heap-based buffer overflow issue was found in ImageMagick's PushCharPixel() function in quantum-private.h.from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.12.98+dfsg1-2
- MEDIUM5.5CVE-2023-2157A heap-based buffer overflow vulnerability was found in the ImageMagick package that can lead to the application crashing.from 0, < 8:6.9.12.98+dfsg1-2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- MEDIUM5.5CVE-2023-1906A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- MEDIUM5.5CVE-2022-1115A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u3
- MEDIUM5.5CVE-2021-20224An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c.from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- MEDIUM5.5CVE-2020-27829A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.10.23+dfsg-2.1+deb10u5
- from 0, < 8:6.9.11.57+dfsg-1
- MEDIUM5.5CVE-2020-27756In ParseMetaGeometry() of MagickCore/geometry.c, image height and width calculations can lead to divide-by-zero conditions which also lead…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-27753There are several memory leaks in the MIFF coder in /coders/miff.c due to improper image depth values, which can be triggered by a speciall…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-27750A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-25676In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), InterpolatePixelChannels(), and InterpolatePixelInfo(), which are all fun…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-25674WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ vi…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-25665The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be o…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-27770Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-27760In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a craf…from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2020-10251In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2019-12976ImageMagick 7.0.8-34 has a memory leak in the ReadPCLImage function in coders/pcl.c.from 0, < 8:6.9.11.24+dfsg-1
- MEDIUM5.5CVE-2019-12975ImageMagick 7.0.8-34 has a memory leak vulnerability in the WriteDPXImage function in coders/dpx.c.from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u17
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.10.23+dfsg-2.1+deb10u1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-5+deb8u12
- MEDIUM5.5CVE-2014-8562DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).from 0, < 8:6.8.9.9-1
- MEDIUM5.5CVE-2014-8355PCX parser code in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read).from 0, < 8:6.8.9.9-1
- MEDIUM5.5CVE-2014-9818ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9816ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9815ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted wpg file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9814ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9813ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9812ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9811The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a m…from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9810The dpx file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a m…from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9809ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9808ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9807The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9806ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file.from 0, < 8:6.8.9.9-4
- from 0, < 8:6.7.7.10-5+deb7u8
- from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2017-7275The ReadPCXImage function in coders/pcx.c in ImageMagick 7.0.4.9 allows remote attackers to cause a denial of service (attempted large memo…from 0
- MEDIUM5.5CVE-2017-5508Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to…from 0, < 8:6.9.7.4+dfsg-1
- MEDIUM5.5CVE-2016-9556The IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3-8 allows remote attackers to cause a denial of service (out-of…from 0, < 8:6.9.6.5+dfsg-1
- MEDIUM5.5CVE-2016-10058Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick before 6.9.6-3 allows remote attackers to cause a denial of servic…from 0, < 8:6.9.6.5+dfsg-1
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.8.9.9-5+deb8u5
- MEDIUM5.5CVE-2016-10047Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick before 6.9.4-7 allows remote attackers to cause a denial of serv…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-10046Heap-based buffer overflow in the DrawImage function in magick/draw.c in ImageMagick before 6.9.5-5 allows remote attackers to cause a deni…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2014-9915Off-by-one error in ImageMagick before 6.6.0-4 allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM…from 0, < 8:6.8.9.9-1
- MEDIUM5.5CVE-2014-9840ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9838magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9836ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9845The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib f…from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9844The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read)…from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2014-9853Memory leak in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (memory consumption) via a crafted rle file.from 0, < 8:6.8.9.9-4
- MEDIUM5.5CVE-2015-8898The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL po…from 0, < 8:6.8.9.9-7
- MEDIUM5.5CVE-2015-8897The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (appl…from 0, < 8:6.8.9.9-7
- MEDIUM5.5CVE-2015-8894Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application…from 0, < 8:6.8.9.9-6
- from 0, < 8:6.9.9.34+dfsg-3
- from 0, < 8:6.9.7.4+dfsg-2
- from 0, < 8:6.9.7.4+dfsg-2
- from 0, < 8:6.9.7.4+dfsg-2
- from 0, < 8:6.9.7.4+dfsg-2
- MEDIUM5.5CVE-2016-10070Heap-based buffer overflow in the CalcMinMax function in coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a deni…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-10066Buffer overflow in the ReadVIFFImage function in coders/viff.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of s…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-10071coders/mat.c in ImageMagick before 6.9.4-0 allows remote attackers to cause a denial of service (out-of-bounds read and application crash)…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-10069coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an…from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-10068The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application…from 0, < 8:6.9.6.5+dfsg-1
- from 0, < 8:6.7.7.10-5+deb7u12
- from 0, < 8:6.9.7.4+dfsg-1
- from 0, < 8:6.8.9.9-5+deb8u7
- MEDIUM5.5CVE-2015-8900The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) v…from 0, < 8:6.8.9.9-6
- MEDIUM5.5CVE-2016-8678The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (…from 0
- MEDIUM5.5CVE-2016-9298Heap overflow in the WaveletDenoiseImage function in MagickCore/fx.c in ImageMagick before 6.9.6-4 and 7.x before 7.0.3-6 allows remote att…from 0, < 8:6.9.6.5+dfsg-1
- MEDIUM5.5CVE-2016-7906magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2016-3717The LABEL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to read arbitrary files via a crafted image.from 0, < 8:6.9.6.2+dfsg-2
- MEDIUM5.5CVE-2012-1186Integer overflow in the SyncImageProfiles function in profile.c in ImageMagick 6.7.5-8 and earlier allows remote attackers to cause a denia…from 0, < 8:6.6.9.7-7
- MEDIUM5.5CVE-2012-0248ImageMagick 6.7.5-7 and earlier allows remote attackers to cause a denial of service (infinite loop and hang) via a crafted image whose IFD…from 0, < 8:6.6.9.7-6
- MEDIUM5.5CVE-2005-0406A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an i…from 0
- from 0
- from 0
- from 0
- MEDIUM5.3CVE-2026-33899ImageMagick has a heap-Buffer-Overflow write of a single zero byte when parsing xml.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- MEDIUM5.3CVE-2026-32636ImageMagick has a heap-buffer-overflow in NewXMLTree which could result in crashfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.3CVE-2026-25970ImageMagick Has Signed Integer Overflow in SIXEL Decoder, Leading to Memory Corruptionfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM5.3CVE-2026-25988ImageMagick: MSL image stack index may fail to refresh, leading to leaked imagesfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- MEDIUM5.3CVE-2026-25799ImageMagick has Division-by-Zero in YUV sampling factor validation, which leads to crashfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.3CVE-2026-25798ImageMagick has NULL Pointer Dereference in ClonePixelCacheRepository via crafted imagefrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.3CVE-2026-25796ImageMagick has memory leak of watermark Image object in ReadSTEGANOImage on multiple error/early-return pathsfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.3CVE-2026-25795ImageMagick has NULL pointer dereference in ReadSFWImage after DestroyImageInfo (sfw.c)from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM5.3CVE-2025-68618ImageMagick's failure to limit the depth of SVG file reads caused a DoS attackfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- MEDIUM5.3CVE-2025-46393In multispectral MIFF image processing in ImageMagick before 7.1.1-44, packet_size is mishandled (related to the rendering of all channels…from 0, < 8:7.1.1.43+dfsg1-1+deb13u1
- from 0
- from 0
- MEDIUM5.1CVE-2026-34238ImageMagick has an integer overflow in despeckle operation causing a heap buffer overflow on 32-bit buildsfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u12
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- MEDIUM4.8CVE-2026-28692ImageMagick has a heap buffer over-read via 32-bit integer overflow in MAT decoderfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- MEDIUM4.7CVE-2025-62594ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)from 0, < 8:7.1.1.43+dfsg1-1+deb13u4
- from 0, < 8:7.1.1.43+dfsg1-1+deb13u7
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u7
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u7
- MEDIUM4.1CVE-2026-47165ImageMagick: Information Disclosure in distributed pixel cache server because it is not using a challenge–response authentication modelfrom 0
- MEDIUM4.1CVE-2026-46693ImageMagick: Race Condition in distributed pixel cache server can result in file descriptor hijackingfrom 0
- from 0
- from 0
- MEDIUM4.0CVE-2026-33535ImageMagick has an Out-of-Bounds write of a zero byte in its X11 display interactionfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u11
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- MEDIUM4.0CVE-2026-27798ImageMagick: Heap Buffer Over-read in WaveletDenoise when processing small imagesfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u10
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- LOW3.7CVE-2025-55212ImageMagick affected by divide-by-zero in ThumbnailImage via montage -geometry ":" leads to crashfrom 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u6
- LOW3.6CVE-2021-39212ImageMagick is free software delivered as a ready-to-run binary distribution or as source code that you may use, copy, modify, and distribu…from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- from 0, < 8:6.9.11.60+dfsg-1.3+deb11u8
- LOW3.3CVE-2021-3574A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks.from 0, < 8:6.9.11.60+dfsg-1.3+deb11u2
- LOW3.3CVE-2020-27769In ImageMagick versions before 7.0.9-0, there are outside the range of representable values of type 'float' at MagickCore/quantize.c.from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27768In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h.from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27757A floating point math calculation in ScaleAnyToQuantum() of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a…from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27755in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the pro…from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27754In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller w…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u13
- LOW3.3CVE-2020-25675In the CropImage() and CropImageToTiles() routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offset…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.7.4+dfsg-11+deb9u12
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27771In RestoreMSCWarning() of /coders/pdf.c there are several areas where calls to GetPixelIndex() could result in values outside the range of…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27764In /MagickCore/statistic.c, there are several areas in ApplyEvaluateOperator() where a size_t cast should have been a ssize_t cast, which c…from 0, < 8:6.9.11.24+dfsg-1
- from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27761WritePALMImage() in /coders/palm.c used size_t casts in several areas of a calculation which could lead to values outside the range of repr…from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27759In IntensityCompare() of /MagickCore/quantize.c, a double value was being casted to int and returned, which in some cases caused a value ou…from 0, < 8:6.9.11.24+dfsg-1
- LOW3.3CVE-2020-27560ImageMagick 7.0.10-34 allows Division by Zero in OptimizeLayerFrames in MagickCore/layer.c, which may cause a denial of service.from 0, < 8:6.9.11.57+dfsg-1
- from 0, < 8:6.9.6.2+dfsg-2
- from 0, < 8:6.7.7.10-5+deb7u2
- from 0, < 8:6.7.7.10-6
- from 0, < 8:6.6.0.4-3+squeeze6
- from 0, < 8:6.7.7.10-3
- —CVE-2010-4167Untrusted search path vulnerability in configure.c in ImageMagick before 6.6.5-5, when MAGICKCORE_INSTALLED_SUPPORT is defined, allows loca…from 0, < 8:6.6.0.4-3
- from 0, < 6:6.2.3.1-1
- —CVE-2009-1882Integer overflow in the XMakeImage function in magick/xwindow.c in ImageMagick 6.5.2-8, and GraphicsMagick, allows remote attackers to caus…from 0, < 7:6.5.1.0-1.1
- —CVE-2008-3134Multiple unspecified vulnerabilities in GraphicsMagick before 1.2.4 allow remote attackers to cause a denial of service (crash, infinite lo…from 0
- —CVE-2008-1096The load_tile function in the XCF coder in coders/xcf.c in (1) ImageMagick 6.2.8-0 and (2) GraphicsMagick (aka gm) 1.1.7 allows user-assist…from 0, < 7:6.3.7.9.dfsg1-2.1
- —CVE-2008-1097Heap-based buffer overflow in the ReadPCXImage function in the PCX coder in coders/pcx.c in (1) ImageMagick 6.2.4-5 and 6.2.8-0 and (2) Gra…from 0, < 7:6.2.4.5.dfsg1-1
- from 0, < 7:6.2.4.5.dfsg1-1+lenny1
- from 0, < 7:6.2.4.5.dfsg1-2
- —CVE-2007-4987Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbit…from 0, < 7:6.2.4.5.dfsg1-2
- —CVE-2007-4986Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm…from 0, < 7:6.2.4.5.dfsg1-2
- —CVE-2007-1797Multiple integer overflows in ImageMagick before 6.3.3-5 allow remote attackers to execute arbitrary code via (1) a crafted DCM image, whic…from 0, < 7:6.2.4.5.dfsg1-1
- from 0, < 7:6.2.4.5.dfsg1-1
- from 0, < 7:6.2.4.5.dfsg1-0.15+etch1
- from 0, < 6:6.0.6.2-2.9
- from 0, < 7:6.2.4.5.dfsg1-0.14
- from 0, < 6:6.0.6.2-2.9
- —CVE-2006-5868Multiple buffer overflows in Imagemagick 6.0 before 6.0.6.2, and 6.2 before 6.2.4.5, has unknown impact and user-assisted attack vectors vi…from 0, < 7:6.2.4.5.dfsg1-0.11
- —CVE-2006-5456Multiple buffer overflows in GraphicsMagick before 1.1.7 and ImageMagick 6.0.7 allow user-assisted attackers to cause a denial of service a…from 0, < 7:6.2.4.5.dfsg1-0.11
- —CVE-2006-3743Multiple buffer overflows in ImageMagick before 6.2.9 allow user-assisted attackers to execute arbitrary code via crafted XCF images.from 0, < 7:6.2.4.5.dfsg1-0.10
- —CVE-2006-3744Multiple integer overflows in ImageMagick before 6.2.9 allows user-assisted attackers to execute arbitrary code via crafted Sun Rasterfile…from 0, < 7:6.2.4.5.dfsg1-0.10
- —CVE-2006-4144Integer overflow in the ReadSGIImage function in sgi.c in ImageMagick before 6.2.9 allows user-assisted attackers to cause a denial of serv…from 0, < 7:6.2.4.5.dfsg1-0.10
- from 0, < 6:6.0.6.2-2.7
- from 0, < 6:6.2.4.5-0.6
- from 0, < 6:6.2.4.5-0.6
- from 0, < 6:6.0.6.2-2.8
- from 0, < 6:6.0.6.2-2.8
- from 0, < 4:5.4.4.5-1woody8
- from 0, < 6:6.2.4.5-0.6
- —CVE-2005-1739The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (in…from 0, < 6:6.0.6.2-2.4
- —CVE-2005-0762Heap-based buffer overflow in the SGI parser in ImageMagick before 6.0 allows remote attackers to execute arbitrary code via a crafted SGI…from 0, < 5:6.0.0-1
- —CVE-2005-0760The TIFF decoder in ImageMagick before 6.0 allows remote attackers to cause a denial of service (crash) via a crafted TIFF file.from 0, < 5:6.0.0-1
- from 0, < 4:5.4.4.5-1woody6
- from 0, < 6:6.0.6.2-2.2
- from 0, < 6:6.0.6.2-2.1
- from 0, < 4:5.4.4.5-1woody5
- —CVE-2005-1275Heap-based buffer overflow in the ReadPNMImage function in pnm.c for ImageMagick 6.2.1 and earlier allows remote attackers to cause a denia…from 0, < 6:6.0.6.2-2.3
- —CVE-2005-0759ImageMagick before 6.0 allows remote attackers to cause a denial of service (application crash) via a TIFF image with an invalid tag.from 0, < 5:6.0.0-1
- —CVE-2005-0761Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PS…from 0, < 5:6.0.2.5
- from 0, < 5.4.4.5-1woody4
- from 0, < 6:6.0.6.2-1.5
- from 0, < 5.4.4.5-1woody3
- from 0, < 5:6.0.7.1-1
- from 0, < 4:5.4.4.5-1woody1
- from 0, < 4:5.5.7-1