Количество 11
Количество 11
CVE-2017-16353
GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked.
CVE-2017-16353
GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked.
CVE-2017-16353
GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked.
CVE-2017-16353
GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure ...
GHSA-whcq-5grp-h63j
GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked.
BDU:2019-04109
Уязвимость функции DescribeImage (magick/describe.c) кроссплатформенной библиотеки для работы с графикой GraphicsMagick, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации
openSUSE-SU-2018:0733-1
Security update for GraphicsMagick
SUSE-SU-2018:0864-1
Security update for GraphicsMagick
SUSE-SU-2018:0880-1
Security update for ImageMagick
openSUSE-SU-2018:0893-1
Security update for ImageMagick
SUSE-SU-2018:0857-1
Security update for ImageMagick
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2017-16353 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. | CVSS3: 6.5 | 32% Средний | больше 8 лет назад |
 | CVE-2017-16353 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. | CVSS3: 3.3 | 32% Средний | больше 8 лет назад |
 | CVE-2017-16353 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. | CVSS3: 6.5 | 32% Средний | больше 8 лет назад |
| CVE-2017-16353 GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure ... | CVSS3: 6.5 | 32% Средний | больше 8 лет назад |
| GHSA-whcq-5grp-h63j GraphicsMagick 1.3.26 is vulnerable to a memory information disclosure vulnerability found in the DescribeImage function of the magick/describe.c file, because of a heap-based buffer over-read. The portion of the code containing the vulnerability is responsible for printing the IPTC Profile information contained in the image. This vulnerability can be triggered with a specially crafted MIFF file. There is an out-of-bounds buffer dereference because certain increments are never checked. | CVSS3: 6.5 | 32% Средний | больше 3 лет назад |
 | BDU:2019-04109 Уязвимость функции DescribeImage (magick/describe.c) кроссплатформенной библиотеки для работы с графикой GraphicsMagick, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации | CVSS3: 6.5 | 32% Средний | больше 8 лет назад |
 | openSUSE-SU-2018:0733-1 Security update for GraphicsMagick | почти 8 лет назад | ||
| SUSE-SU-2018:0864-1 Security update for GraphicsMagick | почти 8 лет назад | ||
| SUSE-SU-2018:0880-1 Security update for ImageMagick | почти 8 лет назад | ||
| openSUSE-SU-2018:0893-1 Security update for ImageMagick | почти 8 лет назад | ||
| SUSE-SU-2018:0857-1 Security update for ImageMagick | почти 8 лет назад |
Уязвимостей на страницу