Debian Imagemagick vulnerabilities

CVE-2018-18023 [MEDIUM] CVE-2018-18023: imagemagick - In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGSt... In ImageMagick 7.0.8-13 Q16, there is a heap-based buffer over-read in the SVGStripString function of coders/svg.c, which allows attackers to cause a denial of service via a crafted SVG image file. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.14+dfsg-1) forky: resolved (fixed in 8:6.9.10.14+dfsg-1) sid: re

CVE-2018-11251 [MEDIUM] CVE-2018-11251: imagemagick - In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over... In ImageMagick 7.0.7-23 Q16 x86_64 2018-01-24, there is a heap-based buffer over-read in ReadSUNImage in coders/sun.c, which allows attackers to cause a denial of service (application crash in SetGrayscaleImage in MagickCore/quantize.c) via a crafted SUN image file. Scope: local bookworm: resolved (fixed in 8:6.9.9.39+dfsg-1) bullseye: resolved (fixed in 8:6.9

CVE-2018-16323 [MEDIUM] CVE-2018-16323: imagemagick - ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitial... ReadXBMImage in coders/xbm.c in ImageMagick before 7.0.8-9 leaves data uninitialized when processing an XBM file that has a negative pixel value. If the affected code is used as a library loaded into a process that includes sensitive information, that information sometimes can be leaked via the image data. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+

CVE-2018-16642 [MEDIUM] CVE-2018-16642: imagemagick - The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote att... The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write. Scope: local bookworm: resolved (fixed in 8:6.9.10.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.10.2+dfsg-2) forky: resolved (fixed in 8:6.9.10.2+dfsg-2) sid: resolved (fixed in 8:6.9.10.2+d

CVE-2018-16645 [MEDIUM] CVE-2018-16645: imagemagick - There is an excessive memory allocation issue in the functions ReadBMPImage of c... There is an excessive memory allocation issue in the functions ReadBMPImage of coders/bmp.c and ReadDIBImage of coders/dib.c in ImageMagick 7.0.8-11, which allows remote attackers to cause a denial of service via a crafted image file. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.14+dfsg-1) forky: resolved

CVE-2018-16641 [MEDIUM] CVE-2018-16641: imagemagick - ImageMagick 7.0.8-6 has a memory leak vulnerability in the TIFFWritePhotoshopLay... ImageMagick 7.0.8-6 has a memory leak vulnerability in the TIFFWritePhotoshopLayers function in coders/tiff.c. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2018-5247 [MEDIUM] CVE-2018-5247: imagemagick - In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rl... In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadRLAImage in coders/rla.c. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+dfsg-3) sid: resolved (fixed in 8:6.9.9.34+dfsg-3) trixie: resolved (fixed in 8:6.9.9.34+dfsg-3)

CVE-2018-16640 [MEDIUM] CVE-2018-16640: imagemagick - ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGIm... ImageMagick 7.0.8-5 has a memory leak vulnerability in the function ReadOneJNGImage in coders/png.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.8+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.8+dfsg-1) forky: resolved (fixed in 8:6.9.10.8+dfsg-1) sid: resolved (fixed in 8:6.9.10.8+dfsg-1) trixie: resolved (fixed in 8:6.9.10.8+dfsg-1)

CVE-2018-20467 [MEDIUM] CVE-2018-20467: imagemagick - In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an i... In coders/bmp.c in ImageMagick before 7.0.8-16, an input file can result in an infinite loop and hang, with high CPU and memory consumption. Remote attackers could leverage this vulnerability to cause a denial of service via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.10.23+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.23+dfsg-1) forky: res

CVE-2018-5246 [MEDIUM] CVE-2018-5246: imagemagick - In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coder... In ImageMagick 7.0.7-17 Q16, there are memory leaks in ReadPATTERNImage in coders/pattern.c. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+dfsg-3) sid: resolved (fixed in 8:6.9.9.34+dfsg-3) trixie: resolved (fixed in 8:6.9.9.34+dfsg-3)

CVE-2018-17967 [MEDIUM] CVE-2018-17967: imagemagick - ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/b... ImageMagick 7.0.7-28 has a memory leak vulnerability in ReadBGRImage in coders/bgr.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.14+dfsg-1) forky: resolved (fixed in 8:6.9.10.14+dfsg-1) sid: resolved (fixed in 8:6.9.10.14+dfsg-1) trixie: resolved (fixed in 8:6.9.10.14+dfsg-1)

CVE-2018-8960 [HIGH] CVE-2018-8960: imagemagick - The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not... The ReadTIFFImage function in coders/tiff.c in ImageMagick 7.0.7-26 Q16 does not properly restrict memory allocation, leading to a heap-based buffer over-read. Scope: local bookworm: resolved (fixed in 8:6.9.9.39+dfsg-1) bullseye: resolved (fixed in 8:6.9.9.39+dfsg-1) forky: resolved (fixed in 8:6.9.9.39+dfsg-1) sid: resolved (fixed in 8:6.9.9.39+dfsg-1) trixie: r

CVE-2018-16329 [CRITICAL] CVE-2018-16329: imagemagick - In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagic... In ImageMagick before 7.0.8-8, a NULL pointer dereference exists in the GetMagickProperty function in MagickCore/property.c. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2018-13153 [MEDIUM] CVE-2018-13153: imagemagick - In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in... In ImageMagick 7.0.8-4, there is a memory leak in the XMagickCommand function in MagickCore/animate.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.8+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.8+dfsg-1) forky: resolved (fixed in 8:6.9.10.8+dfsg-1) sid: resolved (fixed in 8:6.9.10.8+dfsg-1) trixie: resolved (fixed in 8:6.9.10.8+dfsg-1)

CVE-2018-10804 [MEDIUM] CVE-2018-10804: imagemagick - ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/... ImageMagick version 7.0.7-28 contains a memory leak in WriteTIFFImage in coders/tiff.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.10.2+dfsg-2) forky: resolved (fixed in 8:6.9.10.2+dfsg-2) sid: resolved (fixed in 8:6.9.10.2+dfsg-2) trixie: resolved (fixed in 8:6.9.10.2+dfsg-2)

CVE-2018-16750 [MEDIUM] CVE-2018-16750: imagemagick - In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer f... In ImageMagick 7.0.7-29 and earlier, a memory leak in the formatIPTCfromBuffer function in coders/meta.c was found. Scope: local bookworm: resolved (fixed in 8:6.9.10.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.10.2+dfsg-2) forky: resolved (fixed in 8:6.9.10.2+dfsg-2) sid: resolved (fixed in 8:6.9.10.2+dfsg-2) trixie: resolved (fixed in 8:6.9.10.2+dfsg-2)

CVE-2018-6930 [MEDIUM] CVE-2018-6930: imagemagick - A stack-based buffer over-read in the ComputeResizeImage function in the MagickC... A stack-based buffer over-read in the ComputeResizeImage function in the MagickCore/accelerate.c file of ImageMagick 7.0.7-22 allows a remote attacker to cause a denial of service (application crash) via a maliciously crafted pict file. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2018-17966 [MEDIUM] CVE-2018-17966: imagemagick - ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/... ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePDBImage in coders/pdb.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.14+dfsg-1) forky: resolved (fixed in 8:6.9.10.14+dfsg-1) sid: resolved (fixed in 8:6.9.10.14+dfsg-1) trixie: resolved (fixed in 8:6.9.10.14+dfsg-1)

CVE-2018-6405 [MEDIUM] CVE-2018-6405: imagemagick - In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, eac... In the ReadDCMImage function in coders/dcm.c in ImageMagick before 7.0.7-23, each redmap, greenmap, and bluemap variable can be overwritten by a new pointer. The previous pointer is lost, which leads to a memory leak. This allows remote attackers to cause a denial of service. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed

CVE-2018-18016 [MEDIUM] CVE-2018-18016: imagemagick - ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/... ImageMagick 7.0.7-28 has a memory leak vulnerability in WritePCXImage in coders/pcx.c. Scope: local bookworm: resolved (fixed in 8:6.9.10.14+dfsg-1) bullseye: resolved (fixed in 8:6.9.10.14+dfsg-1) forky: resolved (fixed in 8:6.9.10.14+dfsg-1) sid: resolved (fixed in 8:6.9.10.14+dfsg-1) trixie: resolved (fixed in 8:6.9.10.14+dfsg-1)