Debian Imagemagick vulnerabilities

CVE-2014-9814 [MEDIUM] CVE-2014-9814: imagemagick - ImageMagick allows remote attackers to cause a denial of service (NULL pointer d... ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9818 [MEDIUM] CVE-2014-9818: imagemagick - ImageMagick allows remote attackers to cause a denial of service (out-of-bounds ... ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a malformed sun file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-8561 [MEDIUM] CVE-2014-8561: imagemagick - imagemagick 6.8.9.6 has remote DOS via infinite loop imagemagick 6.8.9.6 has remote DOS via infinite loop Scope: local bookworm: resolved (fixed in 8:6.8.9.9-1) bullseye: resolved (fixed in 8:6.8.9.9-1) forky: resolved (fixed in 8:6.8.9.9-1) sid: resolved (fixed in 8:6.8.9.9-1) trixie: resolved (fixed in 8:6.8.9.9-1)

CVE-2014-9838 [MEDIUM] CVE-2014-9838: imagemagick - magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial ... magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash). Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9915 [MEDIUM] CVE-2014-9915: imagemagick - Off-by-one error in ImageMagick before 6.6.0-4 allows remote attackers to cause ... Off-by-one error in ImageMagick before 6.6.0-4 allows remote attackers to cause a denial of service (application crash) via a crafted 8BIM profile. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-1) bullseye: resolved (fixed in 8:6.8.9.9-1) forky: resolved (fixed in 8:6.8.9.9-1) sid: resolved (fixed in 8:6.8.9.9-1) trixie: resolved (fixed in 8:6.8.9.9-1)

CVE-2014-9807 [MEDIUM] CVE-2014-9807: imagemagick - The pdb coder in ImageMagick allows remote attackers to cause a denial of servic... The pdb coder in ImageMagick allows remote attackers to cause a denial of service (double free) via unspecified vectors. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-8562 [MEDIUM] CVE-2014-8562: imagemagick - DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a deni... DCM decode in ImageMagick before 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds read). Scope: local bookworm: resolved (fixed in 8:6.8.9.9-1) bullseye: resolved (fixed in 8:6.8.9.9-1) forky: resolved (fixed in 8:6.8.9.9-1) sid: resolved (fixed in 8:6.8.9.9-1) trixie: resolved (fixed in 8:6.8.9.9-1)

CVE-2014-9805 [MEDIUM] CVE-2014-9805: imagemagick - ImageMagick allows remote attackers to cause a denial of service (segmentation f... ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted pnm file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9811 [MEDIUM] CVE-2014-9811: imagemagick - The xwd file handler in ImageMagick allows remote attackers to cause a denial of... The xwd file handler in ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a malformed xwd file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.

CVE-2014-9808 [MEDIUM] CVE-2014-9808: imagemagick - ImageMagick allows remote attackers to cause a denial of service (segmentation f... ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted dpc image. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9907 [MEDIUM] CVE-2014-9907: imagemagick - coders/dds.c in ImageMagick allows remote attackers to cause a denial of service... coders/dds.c in ImageMagick allows remote attackers to cause a denial of service via a crafted DDS file. Scope: local bookworm: resolved (fixed in 8:6.9.6.2+dfsg-2) bullseye: resolved (fixed in 8:6.9.6.2+dfsg-2) forky: resolved (fixed in 8:6.9.6.2+dfsg-2) sid: resolved (fixed in 8:6.9.6.2+dfsg-2) trixie: resolved (fixed in 8:6.9.6.2+dfsg-2)

CVE-2014-9836 [MEDIUM] CVE-2014-9836: imagemagick - ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a c... ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service via a crafted xpm file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9812 [MEDIUM] CVE-2014-9812: imagemagick - ImageMagick allows remote attackers to cause a denial of service (NULL pointer d... ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted ps file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9813 [MEDIUM] CVE-2014-9813: imagemagick - ImageMagick allows remote attackers to cause a denial of service (application cr... ImageMagick allows remote attackers to cause a denial of service (application crash) via a crafted viff file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9844 [MEDIUM] CVE-2014-9844: imagemagick - The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote a... The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in

CVE-2014-9837 [MEDIUM] CVE-2014-9837: imagemagick - coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to ... coders/pnm.c in ImageMagick 6.9.0-1 Beta and earlier allows remote attackers to cause a denial of service (crash) via a crafted png file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9840 [MEDIUM] CVE-2014-9840: imagemagick - ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of... ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted palm file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9829 [MEDIUM] CVE-2014-9829: imagemagick - coders/sun.c in ImageMagick allows remote attackers to cause a denial of service... coders/sun.c in ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted sun file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-9806 [MEDIUM] CVE-2014-9806: imagemagick - ImageMagick allows remote attackers to cause a denial of service (file descripto... ImageMagick allows remote attackers to cause a denial of service (file descriptor consumption) via a crafted file. Scope: local bookworm: resolved (fixed in 8:6.8.9.9-4) bullseye: resolved (fixed in 8:6.8.9.9-4) forky: resolved (fixed in 8:6.8.9.9-4) sid: resolved (fixed in 8:6.8.9.9-4) trixie: resolved (fixed in 8:6.8.9.9-4)

CVE-2014-8716 [MEDIUM] CVE-2014-8716: imagemagick - The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a den... The JPEG decoder in ImageMagick before 6.8.9-9 allows local users to cause a denial of service (out-of-bounds memory access and crash). Scope: local bookworm: resolved (fixed in 8:6.8.9.9-3) bullseye: resolved (fixed in 8:6.8.9.9-3) forky: resolved (fixed in 8:6.8.9.9-3) sid: resolved (fixed in 8:6.8.9.9-3) trixie: resolved (fixed in 8:6.8.9.9-3)