Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2021-20224

Опубликовано: 25 авг. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS3: 5.5

Описание

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead to an undefined behaviour or a crash.

РелизСтатусПримечание
bionic

released

8:6.9.7.4+dfsg-16ubuntu6.14
devel

not-affected

8:6.9.11.60+dfsg-1.3build3
esm-apps/focal

released

8:6.9.10.23+dfsg-2.1ubuntu11.7+esm1
esm-apps/jammy

not-affected

8:6.9.11.60+dfsg-1.3build2
esm-infra-legacy/trusty

not-affected

8:6.7.7.10-6ubuntu3.13+esm3
esm-infra/bionic

not-affected

8:6.9.7.4+dfsg-16ubuntu6.14
esm-infra/xenial

released

8:6.8.9.9-7ubuntu5.16+esm5
focal

released

8:6.9.10.23+dfsg-2.1ubuntu11.9
jammy

not-affected

8:6.9.11.60+dfsg-1.3build2
kinetic

not-affected

8:6.9.11.60+dfsg-1.3build3

Показывать по

Ссылки на источники

EPSS

Процентиль: 3%
0.00019
Низкий

5.5 Medium

CVSS3

Связанные уязвимости

redhat логотип

CVE-2021-20224

CVSS3: 5.5
redhat
почти 3 года назад

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead to an undefined behaviour or a crash.

nvd логотип

CVE-2021-20224

CVSS3: 5.5
nvd
почти 3 года назад

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead to an undefined behaviour or a crash.

debian логотип

CVE-2021-20224

CVSS3: 5.5
debian
почти 3 года назад

An integer overflow issue was discovered in ImageMagick's ExportIndexQ ...

suse-cvrf логотип

SUSE-SU-2022:3138-1

suse-cvrf
почти 3 года назад

Security update for ImageMagick

github логотип

GHSA-ccpc-2gr7-q87w

CVSS3: 5.5
github
почти 3 года назад

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead to an undefined behaviour or a crash.

EPSS

Процентиль: 3%
0.00019
Низкий

5.5 Medium

CVSS3