Download
| Alert*
oval:org.secpod.oval:def:61751
The host is installed with ImageMagick 7.0.8-25 and is prone to an resource management errors vulnerability. The flaws are present in the ReadSIXELImage in coders/sixel.c, which fails to handle unspecified vectors. Successful exploitation could lead to information disclosure. oval:org.secpod.oval:def:89050580 This update for ImageMagick fixes the following issues: Security issues fixed: - CVE-2019-7175: Fixed multiple memory leaks in DecodeImage function . - CVE-2018-18544: Fixed a memory leak in the function WriteMSLImage . - CVE-2018-20467: Fixed an infinite loop in coders/bmp.c . - CVE-2019-7398: Fixe ... oval:org.secpod.oval:def:1901078 In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. oval:org.secpod.oval:def:2001493 In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. oval:org.secpod.oval:def:604901 This update fixes multiple vulnerabilities in Imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed. oval:org.secpod.oval:def:66704 This update fixes multiple vulnerabilities in Imagemagick: Various memory handling problems and cases of missing or incomplete input sanitising may result in denial of service, memory disclosure or potentially the execution of arbitrary code if malformed image files are processed. oval:org.secpod.oval:def:705035 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:57449 imagemagick: Image manipulation programs and library Several security issues were fixed in ImageMagick. oval:org.secpod.oval:def:2104629 In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file. oval:org.secpod.oval:def:2104625 ImageMagick 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c. |