Debian Imagemagick vulnerabilities

CVE-2017-12877 [MEDIUM] CVE-2017-12877: imagemagick - Use-after-free vulnerability in the DestroyImage function in image.c in ImageMag... Use-after-free vulnerability in the DestroyImage function in image.c in ImageMagick before 7.0.6-6 allows remote attackers to cause a denial of service via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+dfsg-3) sid: resolved (fixed in 8:6.9.9.34+d

CVE-2017-11529 [MEDIUM] CVE-2017-11529: imagemagick - The ReadMATImage function in coders/mat.c in ImageMagick before 6.9.9-0 and 7.x ... The ReadMATImage function in coders/mat.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixed in 8:

CVE-2017-13134 [MEDIUM] CVE-2017-13134: graphicsmagick - In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read ... In ImageMagick 7.0.6-6 and GraphicsMagick 1.3.26, a heap-based buffer over-read was found in the function SFWScan in coders/sfw.c, which allows attackers to cause a denial of service via a crafted file. Scope: local bookworm: resolved (fixed in 1.3.26-19) bullseye: resolved (fixed in 1.3.26-19) forky: resolved (fixed in 1.3.26-19) sid: resolved (fixed in 1.

CVE-2017-13140 [MEDIUM] CVE-2017-13140: imagemagick - In ImageMagick before 6.9.9-1 and 7.x before 7.0.6-2, the ReadOnePNGImage functi... In ImageMagick before 6.9.9-1 and 7.x before 7.0.6-2, the ReadOnePNGImage function in coders/png.c allows remote attackers to cause a denial of service (application hang in LockSemaphoreInfo) via a PNG file with a width equal to MAGICK_WIDTH_LIMIT. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-15) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-15) fork

CVE-2017-11505 [MEDIUM] CVE-2017-11505: imagemagick - The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and ... The ReadOneJNGImage function in coders/png.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (large loop and CPU consumption) via a malformed JNG file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-

CVE-2017-6500 [MEDIUM] CVE-2017-6500: imagemagick - An issue was discovered in ImageMagick 6.9.7. A specially crafted sun file trigg... An issue was discovered in ImageMagick 6.9.7. A specially crafted sun file triggers a heap-based buffer over-read. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-2) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-2) forky: resolved (fixed in 8:6.9.7.4+dfsg-2) sid: resolved (fixed in 8:6.9.7.4+dfsg-2) trixie: resolved (fixed in 8:6.9.7.4+dfsg-2)

CVE-2017-11535 [MEDIUM] CVE-2017-11535: imagemagick - When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a h... When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to a heap-based buffer over-read in the WritePSImage() function in coders/ps.c. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-13) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-13) forky: resolved (fixed in 8:6.9.7.4+dfsg-13) sid: resolved (fixed in 8:6.9.7.4+dfsg-13) trixie: res

CVE-2017-13145 [MEDIUM] CVE-2017-13145: imagemagick - In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function ... In ImageMagick before 6.9.8-8 and 7.x before 7.0.5-9, the ReadJP2Image function in coders/jp2.c does not properly validate the channel geometry, leading to a crash. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-13) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-13) forky: resolved (fixed in 8:6.9.7.4+dfsg-13) sid: resolved (fixed in 8:6.9.7.4+dfsg-13)

CVE-2017-15277 [MEDIUM] CVE-2017-15277: graphicsmagick - ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 le... ReadGIFImage in coders/gif.c in ImageMagick 7.0.6-1 and GraphicsMagick 1.3.26 leaves the palette uninitialized when processing a GIF file that has neither a global nor local palette. If the affected product is used as a library loaded into a process that operates on interesting data, this data sometimes can be leaked via the uninitialized palette. Scope: lo

CVE-2017-8348 [MEDIUM] CVE-2017-8348: imagemagick - In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadMATImage function in mat.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-14989 [MEDIUM] CVE-2017-14989: imagemagick - A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7... A use-after-free in RenderFreetype in MagickCore/annotate.c in ImageMagick 7.0.7-4 Q16 allows attackers to crash the application via a crafted font file, because the FT_Done_Glyph function (from FreeType 2) is called at an incorrect place in the ImageMagick code. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.

CVE-2017-13758 [MEDIUM] CVE-2017-13758: imagemagick - In ImageMagick 7.0.6-10, there is a heap-based buffer overflow in the TracePoint... In ImageMagick 7.0.6-10, there is a heap-based buffer overflow in the TracePoint() function in MagickCore/draw.c. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+dfsg-3) sid: resolved (fixed in 8:6.9.9.34+dfsg-3) trixie: resolved (fixed in 8:6.9.9.34+dfsg-3)

CVE-2017-8349 [MEDIUM] CVE-2017-8349: imagemagick - In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadSFWImage function in sfw.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-11640 [MEDIUM] CVE-2017-11640: imagemagick - When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to an ... When ImageMagick 7.0.6-1 processes a crafted file in convert, it can lead to an address access exception in the WritePTIFImage() function in coders/tiff.c. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-15) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-15) forky: resolved (fixed in 8:6.9.7.4+dfsg-15) sid: resolved (fixed in 8:6.9.7.4+dfsg-15) trixie: r

CVE-2017-8351 [MEDIUM] CVE-2017-8351: imagemagick - In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadPCDImage function in pcd.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-8357 [MEDIUM] CVE-2017-8357: imagemagick - In ImageMagick 7.0.5-5, the ReadEPTImage function in ept.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadEPTImage function in ept.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9

CVE-2017-11530 [MEDIUM] CVE-2017-11530: imagemagick - The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x ... The ReadEPTImage function in coders/ept.c in ImageMagick before 6.9.9-0 and 7.x before 7.0.6-1 allows remote attackers to cause a denial of service (memory consumption) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixe

CVE-2017-11448 [MEDIUM] CVE-2017-11448: imagemagick - The ReadJPEGImage function in coders/jpeg.c in ImageMagick before 7.0.6-1 allows... The ReadJPEGImage function in coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to obtain sensitive information from uninitialized memory locations via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-12) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-12) forky: resolved (fixed in 8:6.9.7.4+dfsg-12) sid: resolved (fixed i

CVE-2017-17914 [MEDIUM] CVE-2017-17914: imagemagick - In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePN... In ImageMagick 7.0.7-16 Q16, a vulnerability was found in the function ReadOnePNGImage in coders/png.c, which allows attackers to cause a denial of service (ReadOneMNGImage large loop) via a crafted mng image file. Scope: local bookworm: resolved (fixed in 8:6.9.9.34+dfsg-3) bullseye: resolved (fixed in 8:6.9.9.34+dfsg-3) forky: resolved (fixed in 8:6.9.9.34+d

CVE-2017-8355 [MEDIUM] CVE-2017-8355: imagemagick - In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to c... In ImageMagick 7.0.5-5, the ReadMTVImage function in mtv.c allows attackers to cause a denial of service (memory leak) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.7.4+dfsg-7) bullseye: resolved (fixed in 8:6.9.7.4+dfsg-7) forky: resolved (fixed in 8:6.9.7.4+dfsg-7) sid: resolved (fixed in 8:6.9.7.4+dfsg-7) trixie: resolved (fixed in 8:6.9