Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-20241

Опубликовано: 09 мар. 2021
Источник: debian

Описание

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.12.20+dfsg1-1experimentalpackage
imagemagickfixed8:6.9.11.60+dfsg-1.5package
imagemagickfixed8:6.9.11.60+dfsg-1.3+deb11u2bullseyepackage

Примечания

  • https://github.com/ImageMagick/ImageMagick/pull/3177

  • ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/dd33b451c3e01098efad34bbaca2df78d5391dc8

  • ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/53cb91b3e7bf95d0e372cbc745e0055ac6054745

Связанные уязвимости

ubuntu логотип

CVE-2021-20241

CVSS3: 5.5
ubuntu
почти 5 лет назад

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

redhat логотип

CVE-2021-20241

CVSS3: 5.5
redhat
около 5 лет назад

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

nvd логотип

CVE-2021-20241

CVSS3: 5.5
nvd
почти 5 лет назад

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

github логотип

GHSA-f43q-2fwm-h7gr

CVSS3: 5.5
github
больше 3 лет назад

A flaw was found in ImageMagick in coders/jp2.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

fstec логотип

BDU:2021-03652

CVSS3: 6.5
fstec
около 5 лет назад

Уязвимость файла coders/jp2.c. набора программ для чтения и редактирования файлов ImageMagisk, связанная с отсутствием проверки деления на ноль, позволяющая нарушителю вызвать отказ в обслуживании