Lucene search
K

4 matches found

OSV
OSV
added 2020/12/08 9:15 p.m.2 views

DEBIAN-CVE-2020-25665

The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...

5.5CVSS6.7AI score0.01016EPSS
Exploits1References1
Cvelist
Cvelist
added 2020/12/08 12:0 a.m.33 views

CVE-2020-25665

The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory in routine WritePALMImage because it needs to be offset by 256. This can cause a out-of-bounds read later on in the routine. The patch adds 256 to bytesperrow in the call to AcquireQuantumMemory. This could cause...

5.9AI score0.01016EPSS
Exploits1References3
OSV
OSV
added 2020/12/03 5:15 p.m.3 views

UBUNTU-CVE-2020-27761

WritePALMImage in /coders/palm.c used sizet casts in several areas of a calculation which could lead to values outside the range of representable type unsigned long undefined behavior when a crafted input file was processed by ImageMagick. The patch casts to ssizet instead to avoid this issue. Re...

3.3CVSS6.7AI score0.01075EPSS
Exploits0References4
CNVD
CNVD
added 2017/03/16 12:0 a.m.2 views

ImageMagick Arbitrary Command Execution Vulnerability

ImageMagick is a free software for creating, editing, and compositing images.The use of most of ImageMagick's features comes from the command line tools. An arbitrary command execution vulnerability exists in ImageMagick versions prior to 6.9.4-0 and GraphicsMagick, which allows remote attackers ...

9.8CVSS9.8AI score0.03162EPSS
Exploits0References1
Rows per page
Query Builder