Imagemagick CVEs and Security Vulnerabilities

Filtered by vendor Imagemagick Subscriptions

Search

Switch to Advanced Search (Beta)

Total 646 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2019-13454	5 Canonical, Debian, Imagemagick and 2 more	5 Ubuntu Linux, Debian Linux, Imagemagick and 2 more	2025-07-11	6.5 Medium
ImageMagick 7.0.1-0 to 7.0.8-54 Q16 allows Division by Zero in RemoveDuplicateLayers in MagickCore/layer.c.
CVE-2022-28463	2 Debian, Imagemagick	2 Debian Linux, Imagemagick	2025-06-25	7.8 High
ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow.
CVE-2017-11360	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
The ReadRLEImage function in coders\rle.c in ImageMagick 7.0.6-1 has a large loop vulnerability via a crafted rle file that triggers a huge number_pixels value.
CVE-2014-9850	4 Canonical, Imagemagick, Opensuse and 1 more	8 Ubuntu Linux, Imagemagick, Opensuse and 5 more	2025-04-20	N/A
Logic error in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (resource consumption).
CVE-2017-11447	1 Imagemagick	1 Imagemagick	2025-04-20	6.5 Medium
The ReadSCREENSHOTImage function in coders/screenshot.c in ImageMagick before 7.0.6-1 has memory leaks, causing denial of service.
CVE-2017-11478	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
The ReadOneDJVUImage function in coders/djvu.c in ImageMagick through 6.9.9-0 and 7.x through 7.0.6-1 allows remote attackers to cause a denial of service (infinite loop and CPU consumption) via a malformed DJVU image.
CVE-2014-9841	4 Canonical, Imagemagick, Opensuse and 1 more	8 Ubuntu Linux, Imagemagick, Opensuse and 5 more	2025-04-20	N/A
The ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to have unspecified impact via unknown vectors, related to "throwing of exceptions."
CVE-2014-9816	1 Imagemagick	1 Imagemagick	2025-04-20	5.5 Medium
ImageMagick allows remote attackers to cause a denial of service (out-of-bounds access) via a crafted viff file.
CVE-2014-9844	5 Canonical, Imagemagick, Opensuse and 2 more	10 Ubuntu Linux, Imagemagick, Opensuse and 7 more	2025-04-20	N/A
The ReadRLEImage function in coders/rle.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted image file.
CVE-2014-9845	5 Canonical, Imagemagick, Opensuse and 2 more	11 Ubuntu Linux, Imagemagick, Leap and 8 more	2025-04-20	N/A
The ReadDIBImage function in coders/dib.c in ImageMagick allows remote attackers to cause a denial of service (crash) via a corrupted dib file.
CVE-2017-11450	2 Debian, Imagemagick	2 Debian Linux, Imagemagick	2025-04-20	8.8 High
coders/jpeg.c in ImageMagick before 7.0.6-1 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via JPEG data that is too short.
CVE-2017-13059	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
In ImageMagick 7.0.6-6, a memory leak vulnerability was found in the function WriteOneJNGImage in coders/png.c, which allows attackers to cause a denial of service (WriteJNGImage memory consumption) via a crafted file.
CVE-2017-14248	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
A heap-based buffer over-read in SampleImage() in MagickCore/resize.c in ImageMagick 7.0.6-8 Q16 allows remote attackers to cause a denial of service via a crafted file.
CVE-2014-9809	1 Imagemagick	1 Imagemagick	2025-04-20	5.5 Medium
ImageMagick allows remote attackers to cause a denial of service (segmentation fault and application crash) via a crafted xwd image.
CVE-2014-9814	1 Imagemagick	1 Imagemagick	2025-04-20	5.5 Medium
ImageMagick allows remote attackers to cause a denial of service (NULL pointer dereference) via a crafted wpg file.
CVE-2014-9838	1 Imagemagick	1 Imagemagick	2025-04-20	N/A
magick/cache.c in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service (crash).
CVE-2014-9819	1 Imagemagick	1 Imagemagick	2025-04-20	7.8 High
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted palm file, a different vulnerability than CVE-2014-9823.
CVE-2014-9821	1 Imagemagick	1 Imagemagick	2025-04-20	7.8 High
Heap-based buffer overflow in ImageMagick allows remote attackers to have unspecified impact via a crafted xpm file.
CVE-2014-9830	1 Imagemagick	1 Imagemagick	2025-04-20	8.8 High
coders/sun.c in ImageMagick allows remote attackers to have unspecified impact via a corrupted sun file.
CVE-2014-9842	4 Canonical, Imagemagick, Opensuse and 1 more	9 Ubuntu Linux, Imagemagick, Opensuse and 6 more	2025-04-20	N/A
Memory leak in the ReadPSDLayers function in coders/psd.c in ImageMagick 6.8.9.9 allows remote attackers to cause a denial of service (memory consumption) via unspecified vectors.

Page 1 of 33. next last »