Unbengable12

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 6.9.13-44 ImageMagick versions prior to 7.1.2-19 **Description** When `Magick` parses an XML file, a single zero byte may be written out of bounds. **Recommendations** Update to version 6.9.13-44. Update to version 7.1.2-19.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-19 ImageMagick versions prior to 6.9.13-44 **Description** ImageMagick is software used for editing and manipulating digital images. The `DestroyXMLTree()` function frees the memory of the XML tree recursively without a depth limit. Processing an XML file with deeply nested structures exhausts stack memory, leading to a Denial of Service (DoS). **Recommendations** Update to version 7.1.2-19 or newer. Update to version 6.9.13-44 or newer.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 **Description** ImageMagick is software used for editing and manipulating digital images. A memory leak exists in the `coders/msl.c` file. Specifically, in the `WriteMSLImage` function, resources are allocated but not released before the function returns, leading to a memory leak. **Recommendations** Update to ImageMagick version 7.1.2-15 or later. Update to ImageMagick version 6.9.13-40 or later.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-15 **Description** ImageMagick is software used for editing and manipulating digital images. A memory leak exists in the `coders/ashlar.c` file, specifically within the `WriteASHLARImage` function. When an exception occurs during the process, allocated memory is not released, leading to a potential memory leak. **Recommendations** Update to version 7.1.2-15 or later.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-15 ImageMagick versions prior to 6.9.13-40 **Description** ImageMagick is software used for editing and manipulating digital images. A flaw exists where the software does not properly check for circular references between two MSLs, potentially leading to a stack overflow. **Recommendations** Update to ImageMagick version 7.1.2-15 or later. Update to ImageMagick version 6.9.13-40 or later.

**Name of the Vulnerable Software and Affected Versions** ImageMagick versions prior to 7.1.2-18 ImageMagick versions prior to 6.9.13-43 **Description** ImageMagick is software used for editing and manipulating digital images. A flaw exists where a zero-byte out-of-bounds write occurs in the X11 `display` interaction path, potentially causing a crash. **Recommendations** Update ImageMagick to version 7.1.2-18 or later. Update ImageMagick to version 6.9.13-43 or later.