Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2021-20244

Опубликовано: 09 мар. 2021
Источник: debian
EPSS Низкий

Описание

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.12.20+dfsg1-1experimentalpackage
imagemagickfixed8:6.9.11.60+dfsg-1.5package
imagemagickfixed8:6.9.11.60+dfsg-1.3+deb11u2bullseyepackage

Примечания

  • https://github.com/ImageMagick/ImageMagick/pull/3194

  • ImageMagick: https://github.com/ImageMagick/ImageMagick/commit/329dd528ab79531d884c0ba131e97d43f872ab5d

  • ImageMagick6: https://github.com/ImageMagick/ImageMagick6/commit/c8d674946a687f40a126166edf470733fc8ede02

EPSS

Процентиль: 33%
0.0013
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2021-20244

CVSS3: 5.5
ubuntu
почти 5 лет назад

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

redhat логотип

CVE-2021-20244

CVSS3: 5.5
redhat
около 5 лет назад

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

nvd логотип

CVE-2021-20244

CVSS3: 5.5
nvd
почти 5 лет назад

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

github логотип

GHSA-2wj7-w2rp-g7h5

CVSS3: 5.5
github
больше 3 лет назад

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

fstec логотип

BDU:2021-03653

CVSS3: 6.5
fstec
почти 5 лет назад

Уязвимость файла MagickCore/visual-effects.c. набора программ для чтения и редактирования файлов ImageMagisk, связанная с отсутствием проверки деления на ноль, позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 33%
0.0013
Низкий