CVE-2021-20176

Опубликовано: 06 янв. 2021

Источник: redhat

CVSS3: 5.5

EPSS Низкий

Описание

A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. This flaw allows an attacker who submits a crafted file that is processed by ImageMagick to trigger undefined behavior through a division by zero. The highest threat from this vulnerability is to system availability.

A divide-by-zero flaw was found in ImageMagick in gem.c. This flaw allows an attacker who submits a crafted file that is processed by ImageMagick to trigger undefined behavior through a division by zero. The highest threat from this vulnerability is to system availability.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 5	ImageMagick	Out of support scope
Red Hat Enterprise Linux 6	ImageMagick	Out of support scope
Red Hat Enterprise Linux 7	ImageMagick	Out of support scope

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Moderate

Дефект:

CWE-369

https://bugzilla.redhat.com/show_bug.cgi?id=1916610ImageMagick: processing crafted file leads to division by zero

EPSS

Процентиль: 33%

0.0013

Низкий

5.5 Medium

CVSS3

Связанные уязвимости

CVE-2021-20176

CVSS3: 5.5

ubuntu

около 5 лет назад

CVE-2021-20176

CVSS3: 5.5

nvd

около 5 лет назад

CVE-2021-20176

CVSS3: 5.5

debian

около 5 лет назад

A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 ...

openSUSE-SU-2021:3996-1

suse-cvrf

около 4 лет назад

Security update for ImageMagick

openSUSE-SU-2021:1583-1

suse-cvrf

около 4 лет назад

Security update for ImageMagick

EPSS

Процентиль: 33%

0.0013

Низкий

5.5 Medium

CVSS3