exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"CVE-2020-25664"

exploitDog

bind:"CVE-2020-25664"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 11

Количество 11

CVE-2020-25664

около 5 лет назад

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-25664

больше 6 лет назад

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-25664

около 5 лет назад

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.

CVSS3: 6.1

EPSS: Низкий

CVE-2020-25664

около 5 лет назад

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper ca ...

CVSS3: 6.1

EPSS: Низкий

GHSA-c5hg-hx4v-7q6w

больше 3 лет назад

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.

EPSS: Низкий

SUSE-SU-2021:14598-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0199-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0153-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

openSUSE-SU-2021:0148-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

openSUSE-SU-2021:0136-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0156-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	CVE-2020-25664 In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.	CVSS3: 6.1	0% Низкий	около 5 лет назад
	CVE-2020-25664 In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.	CVSS3: 6.1	0% Низкий	больше 6 лет назад
	CVE-2020-25664 In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.	CVSS3: 6.1	0% Низкий	около 5 лет назад
	CVE-2020-25664 In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper ca ...	CVSS3: 6.1	0% Низкий	около 5 лет назад
	GHSA-c5hg-hx4v-7q6w In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.		0% Низкий	больше 3 лет назад
	SUSE-SU-2021:14598-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0199-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0153-1 Security update for ImageMagick			около 5 лет назад
	openSUSE-SU-2021:0148-1 Security update for ImageMagick			около 5 лет назад
	openSUSE-SU-2021:0136-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0156-1 Security update for ImageMagick			около 5 лет назад

Уязвимостей на страницу