6 matches found
Astra Linux – Vulnerability in imagemagick
The PALM image coder in coders/palm.c makes an improper call to AcquireQuantumMemory in the routine WritePALMImage. This call requires an offset of 256 bytes. This could lead to a out-of-bounds read later in the routine. The patch adds 256 bytes to bytesperrow in the call to AcquireQuantumMemory...
Unity Linux 20.1060e / 20.1070e Security Update: ImageMagick (UTSA-2026-017569)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017569 advisory. A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick...
SUSE CVE-2020-25674
WriteOnePNGImage from coders/png.c the PNG coder has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. This occurs because it is possible for the colormap to have less than 256 valid values but the loop condition will loop 256 times,...
DEBIAN-CVE-2020-27758
A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long long. This would most likely lead to an impact to application availability, but...
DEBIAN-CVE-2020-27750
A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char and math division by zero. This would...
UBUNTU-CVE-2020-27750
A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char and math division by zero. This would...