ROS-20221121-03

Vulnerability of ImageMagick graphic editor is related to integer overflow in function ExportIndexQuantum in MagickCore/quantum-export.c. Exploitation of the vulnerability could allow an attacker, acting remotely, to pass specially crafted image data to an application, cause an integer overflow a...

The vulnerability in the implementation of the PushLongPixel() function of the ImageMagick graphic editor allows a hacker to trigger a service failure or gain unauthorized access to protected information.

The vulnerability of the PushLongPixel function in the ImageMagick graphic editor is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a service failure or gain unauthorized access to protected information through a...

CVE-2022-28463

A heap-based-buffer-over-read flaw was found in ImageMagick's PushLongPixel function of 'quantum-private.h'. This vulnerability is triggered when an attacker passes a specially crafted image file into MagickCore, potentially leading to a denial of service and information disclosure...

imagemagick/encoder_cin_fuzzer: Heap-buffer-overflow in PushLongPixel

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=4929711059763200 Project: imagemagick Fuzzer: aflimagemagickencodercinfuzzer Fuzz target binary: encodercinfuzzer Job Type: aflasanimagemagick Platform Id: linux Crash Type:...

imagemagick/encoder_isobrl6_fuzzer: Heap-buffer-overflow in PushLongPixel

Project: https://github.com/imagemagick/imagemagick.git Detailed report: https://oss-fuzz.com/testcase?key=5078412994543616 Project: imagemagick Fuzzer: aflimagemagickencoderisobrl6fuzzer Fuzz target binary: encoderisobrl6fuzzer Job Type: aflasanimagemagick Platform Id: linux Crash Type:...