Уязвимость CVE-2022-1114

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.11.60+dfsg-1.5		package
imagemagick	fixed	8:6.9.11.60+dfsg-1.3+deb11u2	bullseye	package
imagemagick	not-affected		buster	package
imagemagick	not-affected		stretch	package

CVE-2022-1114

CVSS3: 7.1

ubuntu

около 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

CVE-2022-1114

CVSS3: 6.1

redhat

больше 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

CVE-2022-1114

CVSS3: 7.1

nvd

около 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

GHSA-rhcm-mpjw-m6hf

CVSS3: 7.1

github

около 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

BDU:2023-01719

CVSS3: 6.8

fstec

больше 3 лет назад

Уязвимость функции RelinquishDCMInfo() компонента dcm.c консольного графического редактора ImageMagick, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании

exploitDog

CVE-2022-1114

Описание

Пакеты

Примечания

Связанные уязвимости