Lucene search
RedhatCVELIST:CVE-2020-27755HistoryDec 08, 2020 - 9:57 p.m.
CVE-2020-27755
2020-12-0821:57:25
CWE-401
redhat
www.cve.org
in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the proper image depth size does not reset the size in the event there is an invalid size. The patch resets the depth to a proper size before throwing an exception. The memory leak can be triggered by a crafted input file that is processed by ImageMagick and could cause an impact to application reliability, such as denial of service. This flaw affects ImageMagick versions prior to 7.0.9-0.
CNA Affected
[
{
"product": "ImageMagick",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "prior to 7.0.9-0"
}
]
}
]Related
cve
cve
CVE-2020-27755
2020-12-08 22:15:18
nvd
nvd
CVE-2020-27755
2020-12-08 22:15:18
ubuntucve
ubuntucve
CVE-2020-27755
2020-12-08 00:00:00
redhatcve
redhatcve
CVE-2020-27755
2020-11-24 19:23:39
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:00:34
prion
prion
Code injection
2020-12-08 22:15:00
debiancve
debiancve
CVE-2020-27755
2020-12-08 22:15:18
osv
osv
CVE-2020-27755
2020-12-08 22:15:18
imagemagick vulnerabilities
2021-06-15 11:11:56
nessus
nessus
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2021:14598-1)
2021-06-10 00:00:00
EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2022-1536)
2022-04-25 00:00:00
SUSE SLES12 Security Update : ImageMagick (SUSE-SU-2021:0199-1)
2021-01-25 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:14598-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2022-1536)
2022-04-25 00:00:00
Ubuntu: Security Advisory (USN-4988-1)
2021-06-16 00:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2021-06-15 00:00:00
cloudfoundry
cloudfoundry
USN-4988-1: ImageMagick vulnerabilities | Cloud Foundry
2021-07-08 00:00:00
suse
suse
Security update for ImageMagick (moderate)
2021-01-22 00:00:00
Security update for ImageMagick (moderate)
2021-01-24 00:00:00