CVE-2022-3213

Опубликовано: 19 сент. 2022

Источник: debian

EPSS Низкий

Описание

A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
imagemagick	fixed	8:6.9.12.98+dfsg1-2		package
imagemagick	fixed	8:6.9.11.60+dfsg-1.6+deb12u1	bookworm	package
imagemagick	fixed	8:6.9.11.60+dfsg-1.3+deb11u3	bullseye	package
imagemagick	not-affected		buster	package

Примечания

https://bugzilla.redhat.com/show_bug.cgi?id=2126824
https://github.com/ImageMagick/ImageMagick/commit/30ccf9a0da1f47161b5935a95be854fe84e6c2a2
https://github.com/ImageMagick/ImageMagick6/commit/1aea203eb36409ce6903b9e41fe7cb70030e8750 (6.9.12-62)

EPSS

Процентиль: 5%

0.00025

Низкий

Связанные уязвимости

CVE-2022-3213

CVSS3: 5.5

ubuntu

почти 3 года назад

A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

CVE-2022-3213

CVSS3: 5.5

redhat

почти 3 года назад

A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

CVE-2022-3213

CVSS3: 5.5

nvd

почти 3 года назад

A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

SUSE-SU-2022:3487-1

suse-cvrf

больше 2 лет назад

Security update for ImageMagick

ROS-20240625-07

CVSS3: 5.5

redos

около 1 года назад

Уязвимость ImageMagick 7

EPSS

Процентиль: 5%

0.00025

Низкий