Debian Imagemagick vulnerabilities

CVE-2017-9142 [MEDIUM] CVE-2017-9142: imagemagick - In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in... In ImageMagick 7.0.5-7 Q16, a crafted file could trigger an assertion failure in the WriteBlob function in MagickCore/blob.c because of missing checks in the ReadOneJNGImage function in coders/png.c. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-9) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-9) forky: resolved (fixed in 8:6.9.7.4+dfsg-9) sid: resolved

CVE-2017-11524 [MEDIUM] CVE-2017-11524: imagemagick - The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7... The WriteBlob function in MagickCore/blob.c in ImageMagick before 6.9.8-10 and 7.x before 7.6.0-0 allows remote attackers to cause a denial of service (assertion failure and application exit) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-

CVE-2017-12431 [MEDIUM] CVE-2017-12431: imagemagick - In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function... In ImageMagick 7.0.6-1, a use-after-free vulnerability was found in the function ReadWMFImage in coders/wmf.c, which allows attackers to cause a denial of service. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-13) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-13) forky: resolved (fixed in 8:6.9.7.4+dfsg-13) sid: resolved (fixed in 8:6.9.7.4+dfsg-13) t

CVE-2017-14528 [MEDIUM] CVE-2017-14528: imagemagick - The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect... The TIFFSetProfiles function in coders/tiff.c in ImageMagick 7.0.6 has incorrect expectations about whether LibTIFF TIFFGetField return values imply that data validation has occurred, which allows remote attackers to cause a denial of service (use-after-free after an invalid call to TIFFSetField, and application crash) via a crafted file. Scope: local bookworm

CVE-2017-11527 [MEDIUM] CVE-2017-11527: imagemagick - The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x ... The ReadDPXImage function in coders/dpx.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixe

CVE-2017-8354 [MEDIUM] CVE-2017-8354: imagemagick - In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadBMPImage function in bmp.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-8356 [MEDIUM] CVE-2017-8356: imagemagick - In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadSUNImage function in sun.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-11639 [MEDIUM] CVE-2017-11639: imagemagick - When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a h... When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WriteCIPImage() function in coders/cip.c, related to the GetPixelLuma function in MagickCore/pixel-accessor.h. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-15) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-15) forky: resolved (fixed in 8:

CVE-2017-10995 [MEDIUM] CVE-2017-10995: imagemagick - The mng_get_long function in coders/png.c in ImageMagick 7.0.6-0 allows remote a... The mng_get_long function in coders/png.c in ImageMagick 7.0.6-0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via a crafted MNG image. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (f

CVE-2017-8343 [MEDIUM] CVE-2017-8343: imagemagick - In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadAAIImage function in aai.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-11447 [MEDIUM] CVE-2017-11447: imagemagick - The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.... The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixed in 8:6.9.7.4+dfsg-12) trixie: resolved (fixed in 8:6.9.7

CVE-2017-8350 [MEDIUM] CVE-2017-8350: imagemagick - In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadJNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-8346 [MEDIUM] CVE-2017-8346: imagemagick - In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadDCMImage function in dcm.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-5508 [MEDIUM] CVE-2017-5508: imagemagick - Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick befor... Heap-based buffer overflow in the PushQuantumPixel function in ImageMagick before 6.9.7-3 and 7.x before 7.0.4-3 allows remote attackers to cause a denial of service (application crash) via a crafted TIFF file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-1) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-1) forky: resolved (fixed in 8:6.9.7.4+dfsg-1) si

CVE-2017-1000445 [MEDIUM] CVE-2017-1000445: imagemagick - ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference... ImageMagick 7.0.7-1 and older version are vulnerable to null pointer dereference in the MagickCore component and might lead to denial of service Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+dfsg-3) sid: resolved (fixed in 8:6.9.9.34+dfsg-3) trixie: resolved

CVE-2017-13144 [MEDIUM] CVE-2017-13144: imagemagick - In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height... In ImageMagick before 6.9.7-10, there is a crash (rather than a "width or height exceeds limit" error report) if the image dimensions are too large, as demonstrated by use of the mpc coder. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-13) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-13) forky: resolved (fixed in 8:6.9.7.4+dfsg-13) sid: resolved (fix

CVE-2017-11528 [MEDIUM] CVE-2017-11528: imagemagick - The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x ... The ReadDIBImage function in coders/dib.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixed in 8:

CVE-2017-11750 [MEDIUM] CVE-2017-11750: imagemagick - The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 ... The ReadOneJNGImage function in coders/png.c in ImageMagick 6.9.9-4 and 7.0.6-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-16) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-16) forky: resolved (fixed in 8:6.9.7.4+dfsg-16) sid: resolved (fixed in 8:6.

CVE-2017-8345 [MEDIUM] CVE-2017-8345: imagemagick - In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadMNGImage function in png.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-8353 [MEDIUM] CVE-2017-8353: imagemagick - In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to... In ImageMagick 7.0.5-5, the ReadPICTImage function in pict.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6