CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:N/I:N/A:P
AI Score
Confidence
Low
EPSS
Percentile
97.4%
Damian Put discovered a buffer overflow in imagemagick’s SGI file
format decoder. By tricking an user or automated system into
processing a specially crafted SGI image, this could be exploited to
execute arbitrary code with the user’s privileges.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
Ubuntu | 6.06 | noarch | libmagick9 | < 6:6.2.4.5-0.6ubuntu0.1 | UNKNOWN |
Ubuntu | 5.10 | noarch | libmagick6 | < 6:6.2.3.4-1ubuntu1.2 | UNKNOWN |
Ubuntu | 5.04 | noarch | libmagick6 | < 6:6.0.6.2-2.1ubuntu1.3 | UNKNOWN |