Debian Imagemagick vulnerabilities

CVE-2005-1739 [MEDIUM] CVE-2005-1739: imagemagick - The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r... The XWD Decoder in ImageMagick before 6.2.2.3, and GraphicsMagick before 1.1.6-r1, allows remote attackers to cause a denial of service (infinite loop) via an image with a zero color mask. Scope: local bookworm: resolved (fixed in 6:6.0.6.2-2.4) bullseye: resolved (fixed in 6:6.0.6.2-2.4) forky: resolved (fixed in 6:6.0.6.2-2.4) sid: resolved (fixed in 6:6.0.6.2

CVE-2005-0761 [MEDIUM] CVE-2005-0761: imagemagick - Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cau... Unknown vulnerability in ImageMagick before 6.1.8 allows remote attackers to cause a denial of service (application crash) via a crafted PSD file. Scope: local bookworm: resolved (fixed in 5:6.0.2.5) bullseye: resolved (fixed in 5:6.0.2.5) forky: resolved (fixed in 5:6.0.2.5) sid: resolved (fixed in 5:6.0.2.5) trixie: resolved (fixed in 5:6.0.2.5)

CVE-2005-0406 [MEDIUM] CVE-2005-0406: imagemagick - A design flaw in image processing software that modifies JPEG images might not m... A design flaw in image processing software that modifies JPEG images might not modify the original EXIF thumbnail, which could lead to an information leak of potentially sensitive visual information that had been removed from the main JPEG image. Scope: local bookworm: open bullseye: open forky: open sid: open trixie: open

CVE-2005-3582 [HIGH] CVE-2005-3582: imagemagick - ImageMagick before 6.2.4.2-r1 allows local users in the portage group to increas... ImageMagick before 6.2.4.2-r1 allows local users in the portage group to increase privileges via a shared object in the Portage temporary build directory, which is added to the search path allowing objects in it to be loaded at runtime. Scope: local bookworm: resolved bullseye: resolved forky: resolved sid: resolved trixie: resolved

CVE-2004-0981 [CRITICAL] CVE-2004-0981: graphicsmagick - Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows r... Buffer overflow in the EXIF parsing routine in ImageMagick before 6.1.0 allows remote attackers to execute arbitrary code via a certain image file. Scope: local bookworm: resolved (fixed in 1.1.7-1) bullseye: resolved (fixed in 1.1.7-1) forky: resolved (fixed in 1.1.7-1) sid: resolved (fixed in 1.1.7-1) trixie: resolved (fixed in 1.1.7-1)

CVE-2004-0827 [HIGH] CVE-2004-0827: imagemagick - Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, ... Multiple buffer overflows in the ImageMagick graphics library 5.x before 5.4.4, and 6.x before 6.0.6.2, allow remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via malformed (1) AVI, (2) BMP, or (3) DIB files. Scope: local bookworm: resolved (fixed in 5:6.0.7.1-1) bullseye: resolved (fixed in 5:6.0.7.1-1) forky:

CVE-2003-0455 [MEDIUM] CVE-2003-0455: imagemagick - The imagemagick libmagick library 5.5 and earlier creates temporary files insecu... The imagemagick libmagick library 5.5 and earlier creates temporary files insecurely, which allows local users to create or overwrite arbitrary files. Scope: local bookworm: resolved (fixed in 4:5.5.7-1) bullseye: resolved (fixed in 4:5.5.7-1) forky: resolved (fixed in 4:5.5.7-1) sid: resolved (fixed in 4:5.5.7-1) trixie: resolved (fixed in 4:5.5.7-1)