exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

bind:"GHSA-568w-cwq2-w5pj" OR bind:"CVE-2020-27754"

exploitDog

bind:"GHSA-568w-cwq2-w5pj" OR bind:"CVE-2020-27754"

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 12

Количество 12

GHSA-568w-cwq2-w5pj

больше 3 лет назад

In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.

CVSS3: 3.3

EPSS: Низкий

CVE-2020-27754

около 5 лет назад

In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.

CVSS3: 3.3

EPSS: Низкий

CVE-2020-27754

больше 6 лет назад

In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.

CVSS3: 3.3

EPSS: Низкий

CVE-2020-27754

около 5 лет назад

In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.

CVSS3: 3.3

EPSS: Низкий

CVE-2020-27754

около 5 лет назад

In IntensityCompare() of /magick/quantize.c, there are calls to PixelP ...

CVSS3: 3.3

EPSS: Низкий

BDU:2021-01016

больше 6 лет назад

Уязвимость функции IntensityCompare() консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.3

EPSS: Низкий

SUSE-SU-2021:14598-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0199-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0153-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

openSUSE-SU-2021:0148-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

openSUSE-SU-2021:0136-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

SUSE-SU-2021:0156-1

около 5 лет назад

Security update for ImageMagick

EPSS: Низкий

Уязвимостей на страницу

	Уязвимость	CVSS	EPSS	Опубликовано
	GHSA-568w-cwq2-w5pj In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.	CVSS3: 3.3	0% Низкий	больше 3 лет назад
	CVE-2020-27754 In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.	CVSS3: 3.3	0% Низкий	около 5 лет назад
	CVE-2020-27754 In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.	CVSS3: 3.3	0% Низкий	больше 6 лет назад
	CVE-2020-27754 In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. To mitigate this, the patch introduces and uses the ConstrainPixelIntensity() function, which forces the pixel intensities to be within the proper bounds in the event of an overflow. This flaw affects ImageMagick versions prior to 6.9.10-69 and 7.0.8-69.	CVSS3: 3.3	0% Низкий	около 5 лет назад
	CVE-2020-27754 In IntensityCompare() of /magick/quantize.c, there are calls to PixelP ...	CVSS3: 3.3	0% Низкий	около 5 лет назад
	BDU:2021-01016 Уязвимость функции IntensityCompare() консольного графического редактора ImageMagick, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.3	0% Низкий	больше 6 лет назад
	SUSE-SU-2021:14598-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0199-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0153-1 Security update for ImageMagick			около 5 лет назад
	openSUSE-SU-2021:0148-1 Security update for ImageMagick			около 5 лет назад
	openSUSE-SU-2021:0136-1 Security update for ImageMagick			около 5 лет назад
	SUSE-SU-2021:0156-1 Security update for ImageMagick			около 5 лет назад

Уязвимостей на страницу