Описание
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | DNE | |
| devel | released | 1.1.11-1 |
| edgy | ignored | end of life, was needed |
| feisty | ignored | end of life, was needed |
| gutsy | ignored | end of life, was needed |
| hardy | released | 1.1.11-1 |
| intrepid | released | 1.1.11-1 |
| upstream | released | 1.1.11 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 6:6.2.4.5-0.6ubuntu0.7 |
| devel | released | 7:6.2.4.5.dfsg1-2ubuntu1 |
| edgy | released | 7:6.2.4.5.dfsg1-0.10ubuntu0.4 |
| feisty | released | 7:6.2.4.5.dfsg1-0.14ubuntu0.2 |
| gutsy | released | 7:6.2.4.5.dfsg1-2ubuntu1 |
| hardy | released | 7:6.2.4.5.dfsg1-2ubuntu1 |
| intrepid | released | 7:6.2.4.5.dfsg1-2ubuntu1 |
| upstream | released | 6.3.5-9 |
Показывать по
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3
Связанные уязвимости
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
Sign extension error in the ReadDIBImage function in ImageMagick befor ...
Sign extension error in the ReadDIBImage function in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted width value in an image file, which triggers an integer overflow and a heap-based buffer overflow.
EPSS
6.8 Medium
CVSS2
7.8 High
CVSS3