Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-3v23-qhr8-m9w2

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file.

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file.

EPSS

Процентиль: 43%
0.00205
Низкий

Связанные уязвимости

CVSS3: 8.1
ubuntu
около 6 лет назад

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file.

CVSS3: 8.1
redhat
около 6 лет назад

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file.

CVSS3: 8.1
nvd
около 6 лет назад

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in the function WriteTIFFImage of coders/tiff.c, which allows an attacker to cause a denial of service or possibly information disclosure via a crafted image file.

CVSS3: 8.1
debian
около 6 лет назад

In ImageMagick 7.0.8-43 Q16, there is a heap-based buffer over-read in ...

suse-cvrf
почти 6 лет назад

Security update for ImageMagick

EPSS

Процентиль: 43%
0.00205
Низкий