Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-fhcf-vpm9-jphv

Опубликовано: 24 мая 2022
Источник: github
Github: Не прошло ревью

Описание

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

EPSS

Процентиль: 23%
0.00074
Низкий

Дефекты

CWE-119
CWE-193

Связанные уязвимости

CVSS3: 7.1
ubuntu
около 6 лет назад

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

CVSS3: 6.5
redhat
около 6 лет назад

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

CVSS3: 7.1
nvd
около 6 лет назад

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

CVSS3: 7.1
debian
около 6 лет назад

An off-by-one read vulnerability was discovered in ImageMagick before ...

suse-cvrf
около 6 лет назад

Security update for GraphicsMagick

EPSS

Процентиль: 23%
0.00074
Низкий

Дефекты

CWE-119
CWE-193