Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-1115

Опубликовано: 29 авг. 2022
Источник: debian
EPSS Низкий

Описание

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
imagemagickfixed8:6.9.12.98+dfsg1-2package
imagemagicknot-affectedbusterpackage
imagemagicknot-affectedstretchpackage

Примечания

  • https://github.com/ImageMagick/ImageMagick/issues/4974

  • Fixed by: https://github.com/ImageMagick/ImageMagick6/commit/1f860f52bd8d58737ad883072203391096b30b51 (6.9.12-44)

  • Introduced by (Support 32-bit tiles TIFF images): https://github.com/ImageMagick/ImageMagick6/commit/b874d50070557eb98bdc6a3095ef476 (6.9.10-88)

EPSS

Процентиль: 12%
0.00041
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2022-1115

CVSS3: 5.5
ubuntu
почти 3 года назад

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.

redhat логотип

CVE-2022-1115

CVSS3: 5.5
redhat
больше 3 лет назад

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.

nvd логотип

CVE-2022-1115

CVSS3: 5.5
nvd
почти 3 года назад

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel() function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service.

redos логотип

ROS-20240611-17

CVSS3: 5.5
redos
около 1 года назад

Уязвимость ImageMagick7

redos логотип

ROS-20240611-08

CVSS3: 5.5
redos
около 1 года назад

Уязвимость ImageMagick

EPSS

Процентиль: 12%
0.00041
Низкий