CVE search results

21 – 30 of 642 results

Detailed view

Sort by:

CVE-2022-1115

Medium priority

Ignored

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion,...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	—	Not affected	Not affected	Not affected	Not affected

CVE-2022-0284

Medium priority

Not affected

A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	—	Not affected	Not affected	Not affected	Not affected

CVE-2021-3574

Medium priority

Fixed

A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks.

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Fixed	Fixed	Not affected	Not affected	Not affected

CVE-2021-20224

Medium priority

Fixed

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	—	Not affected	Fixed	Fixed	Fixed

CVE-2022-2719

Medium priority

Not affected

In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. This could potentially cause a denial of service. This was fixed...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	—	Not affected	Not affected	Not affected	Not affected

CVE-2022-32547

Medium priority

Some fixes available 10 of 11

In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires 4 byte alignment at MagickCore/property.c. Whenever crafted or untrusted input...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Fixed	Fixed	Fixed	Fixed	Fixed

CVE-2022-32546

Medium priority

Some fixes available 10 of 11

A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c, when crafted or untrusted input is processed. This leads to a negative impact to application...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Fixed	Fixed	Fixed	Fixed	Fixed

CVE-2022-32545

Medium priority

Some fixes available 7 of 8

A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a negative impact to application...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Not affected	Fixed	Fixed	Fixed	Fixed

CVE-2022-28463

Medium priority

Some fixes available 10 of 11

ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Fixed	Fixed	Fixed	Fixed	Fixed

CVE-2022-1114

Medium priority

Some fixes available 6 of 7

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for...

1 affected package

imagemagick

Package	24.04 LTS	22.04 LTS	20.04 LTS	18.04 LTS	16.04 LTS
imagemagick	Fixed	Fixed	Not affected	Not affected	Not affected

Export to JSON

Results by page:

Search CVE reports