Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

ubuntu логотип

CVE-2022-1114

Опубликовано: 29 апр. 2022
Источник: ubuntu
Приоритет: medium
EPSS Низкий
CVSS2: 5.8
CVSS3: 7.1

Описание

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

РелизСтатусПримечание
bionic

not-affected

code-not-present
devel

released

8:6.9.11.60+dfsg-1.3ubuntu1
esm-apps/focal

not-affected

code-not-present
esm-apps/jammy

released

8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1+esm1
esm-apps/noble

released

8:6.9.11.60+dfsg-1.3ubuntu1
esm-infra-legacy/trusty

not-affected

code-not-present
esm-infra/bionic

not-affected

code-not-present
esm-infra/xenial

not-affected

code-not-present
focal

not-affected

code-not-present
impish

ignored

end of life

Показывать по

Ссылки на источники

EPSS

Процентиль: 21%
0.0007
Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3

Связанные уязвимости

redhat логотип

CVE-2022-1114

CVSS3: 6.1
redhat
больше 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

nvd логотип

CVE-2022-1114

CVSS3: 7.1
nvd
больше 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

debian логотип

CVE-2022-1114

CVSS3: 7.1
debian
больше 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInf ...

github логотип

GHSA-rhcm-mpjw-m6hf

CVSS3: 7.1
github
больше 3 лет назад

A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo() function of dcm.c file. This vulnerability is triggered when an attacker passes a specially crafted DICOM image file to ImageMagick for conversion, potentially leading to information disclosure and a denial of service.

fstec логотип

BDU:2023-01719

CVSS3: 6.8
fstec
больше 3 лет назад

Уязвимость функции RelinquishDCMInfo() компонента dcm.c консольного графического редактора ImageMagick, позволяющая нарушителю получить доступ к конфиденциальным данным, а также вызвать отказ в обслуживании

EPSS

Процентиль: 21%
0.0007
Низкий

5.8 Medium

CVSS2

7.1 High

CVSS3