Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2020-10251

Опубликовано: 10 мар. 2020
Источник: debian
EPSS Низкий

Описание

In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.11.24+dfsg-1package
imagemagicknot-affectedbusterpackage
imagemagicknot-affectedstretchpackage
imagemagicknot-affectedjessiepackage

Примечания

  • introduced by https://github.com/ImageMagick/ImageMagick6/commit/0a28a9416018661ecc52e908205c738ce5e17e40

  • introduced by https://github.com/ImageMagick/ImageMagick6/commit/8b5a3f92ef102d6f76a51fa20b408795952fc1b0

  • introduced by https://github.com/ImageMagick/ImageMagick6/commit/c6c591c3ec9b043593262a3f3b848355a4804758

  • https://github.com/ImageMagick/ImageMagick/issues/1859

  • ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/868aad754ee599eb7153b84d610f2ecdf7b339f6

  • ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/3456724dff047db5adb32f8cf70c903c1b7d16d4

EPSS

Процентиль: 67%
0.00542
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2020-10251

CVSS3: 5.5
ubuntu
почти 6 лет назад

In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image.

redhat логотип

CVE-2020-10251

CVSS3: 5.5
redhat
почти 6 лет назад

In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image.

nvd логотип

CVE-2020-10251

CVSS3: 5.5
nvd
почти 6 лет назад

In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image.

github логотип

GHSA-x22r-v7xh-wg93

github
больше 3 лет назад

In ImageMagick 7.0.9, an out-of-bounds read vulnerability exists within the ReadHEICImageByID function in coders\heic.c. It can be triggered via an image with a width or height value that exceeds the actual size of the image.

EPSS

Процентиль: 67%
0.00542
Низкий