Описание
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c.
| Релиз | Статус | Примечание |
|---|---|---|
| bionic | ignored | end of standard support, was needed |
| devel | not-affected | 1.4+really1.3.34+hg16181-1 |
| disco | ignored | end of life |
| eoan | ignored | end of life |
| esm-apps/bionic | released | 1.3.28-2ubuntu0.1+esm1 |
| esm-apps/focal | not-affected | 1.4+really1.3.34+hg16181-1 |
| esm-apps/jammy | not-affected | 1.4+really1.3.34+hg16181-1 |
| esm-apps/xenial | released | 1.3.23-1ubuntu0.6+esm1 |
| esm-infra-legacy/trusty | released | 1.3.18-1ubuntu3.1+esm7 |
| focal | not-affected | 1.4+really1.3.34+hg16181-1 |
Показывать по
EPSS
6.4 Medium
CVSS2
9.1 Critical
CVSS3
Связанные уязвимости
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c.
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buff ...
In GraphicsMagick 1.4 snapshot-20191208 Q8, there is a heap-based buffer over-read in the function EncodeImage of coders/pict.c.
Уязвимость функции EncodeImage графического редактора GraphicsMagick, связанная с чтением за допустимыми границами буфера данных, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании
EPSS
6.4 Medium
CVSS2
9.1 Critical
CVSS3