Debian Imagemagick vulnerabilities

CVE-2016-10051 [HIGH] CVE-2016-10051: imagemagick - Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in Ima... Use-after-free vulnerability in the ReadPWPImage function in coders/pwp.c in ImageMagick 6.9.5-5 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.

CVE-2016-5688 [HIGH] CVE-2016-5688: imagemagick - The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memo... The WPG parser in ImageMagick before 6.9.4-4 and 7.x before 7.0.1-5, when a memory limit is set, allows remote attackers to have unspecified impact via vectors related to the SetImageExtent return-value check, which trigger (1) a heap-based buffer overflow in the SetPixelIndex function or an invalid write operation in the (2) ScaleCharToQuantum or (3) SetPixelInde

CVE-2016-10067 [HIGH] CVE-2016-10067: imagemagick - magick/memory.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a... magick/memory.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via vectors involving "too many exceptions," which trigger a buffer overflow. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (f

CVE-2016-10065 [HIGH] CVE-2016-10065: imagemagick - The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows... The ReadVIFFImage function in coders/viff.c in ImageMagick before 7.0.1-0 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved

CVE-2016-6823 [HIGH] CVE-2016-6823: imagemagick - Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote a... Integer overflow in the BMP coder in ImageMagick before 7.0.2-10 allows remote attackers to cause a denial of service (crash) via crafted height and width values, which triggers an out-of-bounds write. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved

CVE-2016-8862 [HIGH] CVE-2016-8862: imagemagick - The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.... The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick before 7.0.3.3 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. Scope: local bookworm: resolved (fixed in 8:6.9.6.6+dfsg-1) bullseye: resolved (fixed in 8:6.9.6.6+dfsg-1) forky: resolved (fixed in 8:6.9.6.6+dfsg-1) sid: resolved

CVE-2016-10056 [HIGH] CVE-2016-10056: imagemagick - Buffer overflow in the sixel_decode function in coders/sixel.c in ImageMagick be... Buffer overflow in the sixel_decode function in coders/sixel.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+df

CVE-2016-10057 [HIGH] CVE-2016-10057: imagemagick - Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick... Buffer overflow in the WriteGROUP4Image function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2

CVE-2016-7539 [HIGH] CVE-2016-7539: imagemagick - Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attack... Memory leak in AcquireVirtualMemory in ImageMagick before 7 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolv

CVE-2016-10049 [HIGH] CVE-2016-10049: imagemagick - Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick befo... Buffer overflow in the ReadRLEImage function in coders/rle.c in ImageMagick before 6.9.4-4 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted RLE file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+

CVE-2016-10063 [HIGH] CVE-2016-10063: imagemagick - Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote att... Buffer overflow in coders/tiff.c in ImageMagick before 6.9.5-1 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file, related to extend validity. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg

CVE-2016-10055 [HIGH] CVE-2016-10055: imagemagick - Buffer overflow in the WritePDBImage function in coders/pdb.c in ImageMagick bef... Buffer overflow in the WritePDBImage function in coders/pdb.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (application crash) or have other unspecified impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfs

CVE-2016-6491 [HIGH] CVE-2016-6491: imagemagick - Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in Imag... Buffer overflow in the Get8BIMProperty function in MagickCore/property.c in ImageMagick before 6.9.5-4 and 7.x before 7.0.2-6 allows remote attackers to cause a denial of service (out-of-bounds read, memory leak, and crash) via a crafted image. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolve

CVE-2016-4562 [HIGH] CVE-2016-4562: imagemagick - The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 ... The DrawDashPolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles calculations of certain vertices integer data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file. Scope: local bookworm: resolved (fixed in 8:

CVE-2016-8677 [HIGH] CVE-2016-8677: imagemagick - The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before ... The AcquireQuantumPixels function in MagickCore/quantum.c in ImageMagick before 7.0.3-1 allows remote attackers to have unspecified impact via a crafted image file, which triggers a memory allocation failure. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-1) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-1) forky: resolved (fixed in 8:6.9.6.2+dfsg-1) sid: r

CVE-2016-4563 [HIGH] CVE-2016-4563: imagemagick - The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4... The TraceStrokePolygon function in MagickCore/draw.c in ImageMagick before 6.9.4-0 and 7.x before 7.0.1-2 mishandles the relationship between the BezierQuantum value and certain strokes data, which allows remote attackers to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted file. Scope: local

CVE-2016-10053 [MEDIUM] CVE-2016-10053: imagemagick - The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allow... The WriteTIFFImage function in coders/tiff.c in ImageMagick before 6.9.5-8 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fix

CVE-2016-7906 [MEDIUM] CVE-2016-7906: imagemagick - magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a den... magick/attribute.c in ImageMagick 7.0.3-2 allows remote attackers to cause a denial of service (use-after-free) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed in 8:6.9.6.2+df

CVE-2016-10068 [MEDIUM] CVE-2016-10068: imagemagick - The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cau... The MSL interpreter in ImageMagick before 6.9.6-4 allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted XML file. Scope: local bookworm: resolved (fixed in 8:6.9.6.5+dfsg-1) bullseye: resolved (fixed in 8:6.9.6.5+dfsg-1) forky: resolved (fixed in 8:6.9.6.5+dfsg-1) sid: resolved (fixed in 8:6.9.6.5+dfsg-1)

CVE-2016-10069 [MEDIUM] CVE-2016-10069: imagemagick - coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a de... coders/mat.c in ImageMagick before 6.9.4-5 allows remote attackers to cause a denial of service (application crash) via a mat file with an invalid number of frames. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trix