Debian Imagemagick vulnerabilities

CVE-2016-10060 [MEDIUM] CVE-2016-10060: imagemagick - The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before ... The ConcatenateImages function in MagickWand/magick-cli.c in ImageMagick before 7.0.1-10 does not check the return value of the fputc function, which allows remote attackers to cause a denial of service (application crash) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resol

CVE-2016-10047 [MEDIUM] CVE-2016-10047: imagemagick - Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick befor... Memory leak in the NewXMLTree function in magick/xml-tree.c in ImageMagick before 6.9.4-7 allows remote attackers to cause a denial of service (memory consumption) via a crafted XML file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in

CVE-2016-7519 [MEDIUM] CVE-2016-7519: imagemagick - The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers... The ReadRLEImage function in coders/rle.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fi

CVE-2016-7523 [MEDIUM] CVE-2016-7523: imagemagick - coders/meta.c in ImageMagick allows remote attackers to cause a denial of servic... coders/meta.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed in 8:6.9.6.2+dfsg-2)

CVE-2016-7534 [MEDIUM] CVE-2016-7534: imagemagick - The generic decoder in ImageMagick allows remote attackers to cause a denial of ... The generic decoder in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed in 8:6.9.6.2+dfs

CVE-2016-8866 [HIGH] CVE-2016-8866: imagemagick - The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 b... The AcquireMagickMemory function in MagickCore/memory.c in ImageMagick 7.0.3.3 before 7.0.3.8 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-8862. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: reso

CVE-2016-8678 [MEDIUM] CVE-2016-8678: imagemagick - The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0... The IsPixelMonochrome function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.0 allows remote attackers to cause a denial of service (out-of-bounds read and crash) via a crafted file. NOTE: the vendor says "This is a Q64 issue and we do not support Q64." Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2016-3716 [LOW] CVE-2016-3716: graphicsmagick - The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remot... The MSL coder in ImageMagick before 6.9.3-10 and 7.x before 7.0.1-1 allows remote attackers to move arbitrary files via a crafted image. Scope: local bookworm: resolved (fixed in 1.3.24-1) bullseye: resolved (fixed in 1.3.24-1) forky: resolved (fixed in 1.3.24-1) sid: resolved (fixed in 1.3.24-1) trixie: resolved (fixed in 1.3.24-1)

CVE-2016-6520 [CRITICAL] CVE-2016-6520: imagemagick - Buffer overflow in MagickCore/enhance.c in ImageMagick before 7.0.2-7 allows rem... Buffer overflow in MagickCore/enhance.c in ImageMagick before 7.0.2-7 allows remote attackers to have unspecified impact via vectors related to pixel cache morphology. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2016-9773 [MEDIUM] CVE-2016-9773: imagemagick - Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-acces... Heap-based buffer overflow in the IsPixelGray function in MagickCore/pixel-accessor.h in ImageMagick 7.0.3.8 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted image file. NOTE: this vulnerability exists because of an incomplete fix for CVE-2016-9556. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid

CVE-2015-8895 [HIGH] CVE-2015-8895: imagemagick - Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote... Integer overflow in coders/icon.c in ImageMagick 6.9.1-3 and later allows remote attackers to cause a denial of service (application crash) via a crafted length value, which triggers a buffer overflow. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-7) bullseye: resolved (fixed in 8:6.8.9.9-7) forky: resolved (fixed in 8:6.8.9.9-7) sid: resolved (fixed in 8:6.

CVE-2015-8957 [MEDIUM] CVE-2015-8957: imagemagick - Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to ca... Buffer overflow in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (application crash) via a crafted SUN file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed

CVE-2015-8901 [MEDIUM] CVE-2015-8901: imagemagick - ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of... ImageMagick 6.x before 6.9.0-5 Beta allows remote attackers to cause a denial of service (infinite loop) via a crafted MIFF file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-6) bullseye: resolved (fixed in 8:6.8.9.9-6) forky: resolved (fixed in 8:6.8.9.9-6) sid: resolved (fixed in 8:6.8.9.9-6) trixie: resolved (fixed in 8:6.8.9.9-6)

CVE-2015-8894 [MEDIUM] CVE-2015-8894: imagemagick - Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows ... Double free vulnerability in coders/tga.c in ImageMagick 7.0.0 and later allows remote attackers to cause a denial of service (application crash) via a crafted tga file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-6) bullseye: resolved (fixed in 8:6.8.9.9-6) forky: resolved (fixed in 8:6.8.9.9-6) sid: resolved (fixed in 8:6.8.9.9-6) trixie: resolved (fix

CVE-2015-8900 [MEDIUM] CVE-2015-8900: imagemagick - The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remo... The ReadHDRImage function in coders/hdr.c in ImageMagick 6.x and 7.x allows remote attackers to cause a denial of service (infinite loop) via a crafted HDR file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-6) bullseye: resolved (fixed in 8:6.8.9.9-6) forky: resolved (fixed in 8:6.8.9.9-6) sid: resolved (fixed in 8:6.8.9.9-6) trixie: resolved (fixed in 8:

CVE-2015-8896 [MEDIUM] CVE-2015-8896: imagemagick - Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows r... Integer truncation issue in coders/pict.c in ImageMagick before 7.0.5-0 allows remote attackers to cause a denial of service (application crash) via a crafted .pict file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-7) bullseye: resolved (fixed in 8:6.8.9.9-7) forky: resolved (fixed in 8:6.8.9.9-7) sid: resolved (fixed in 8:6.8.9.9-7) trixie: resolved (fi

CVE-2015-8897 [MEDIUM] CVE-2015-8897: imagemagick - The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4... The SpliceImage function in MagickCore/transform.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (application crash) via a crafted png file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-7) bullseye: resolved (fixed in 8:6.8.9.9-7) forky: resolved (fixed in 8:6.8.9.9-7) sid: resolved (fixed in 8:6.8.9.9-7) trixie: resol

CVE-2015-8958 [MEDIUM] CVE-2015-8958: imagemagick - coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause... coders/sun.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted SUN file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) tri

CVE-2015-8898 [MEDIUM] CVE-2015-8898: imagemagick - The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 al... The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted image file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-7) bullseye: resolved (fixed in 8:6.8.9.9-7) forky: resolved (fixed in 8:6.8.9.9-7) sid: resolved (fixed in 8:6.8.9.9-7) trixie:

CVE-2015-8959 [MEDIUM] CVE-2015-8959: imagemagick - coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause... coders/dds.c in ImageMagick before 6.9.0-4 Beta allows remote attackers to cause a denial of service (CPU consumption) via a crafted DDS file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed in 8