Lucene search
+L

19 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.30 views

Ubuntu 20.04 LTS / 22.04 LTS : ImageMagick vulnerabilities (USN-6200-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6200-2 advisory. USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This...

5.5CVSS6.6AI score0.01018EPSS
Exploits2References3
Ubuntu
Ubuntu
added 2024/07/25 11:55 p.m.58 views

USN-6200-2: ImageMagick vulnerabilities

USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This update fixes the problem. Original advisory details: It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected...

5.5CVSS7AI score0.01018EPSS
Exploits2
OpenVAS
OpenVAS
added 2023/12/04 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2023:4634-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.7AI score0.89855EPSS
Exploits38References28
Ubuntu
Ubuntu
added 2023/07/04 9:23 a.m.437 views

USN-6200-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected PDF files. An attacker could possibly use this issue to inject additional shell commands and perform arbitrary code execution. This issue only affected Ubuntu 20.04 LTS. CVE-2020-29599 It was...

7.8CVSS6.9AI score0.07508EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2023/06/09 12:0 a.m.30 views

EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2023-2149)

According to the versions of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to...

5.5CVSS6.9AI score0.00365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/06/09 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2023-2149)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6.6AI score0.00365EPSS
Exploits0References2
Amazon
Amazon
added 2023/03/07 12:0 a.m.103 views

Medium: ImageMagick

Issue Overview: An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to GetPixelIndex could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file,...

7.8CVSS7.2AI score0.89855EPSS
Exploits33
Tenable Nessus
Tenable Nessus
added 2023/02/08 12:0 a.m.36 views

EulerOS 2.0 SP8 : ImageMagick (EulerOS-SA-2023-1318)

According to the versions of the ImageMagick packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to...

5.5CVSS6.9AI score0.00365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/12/07 12:0 a.m.31 views

Mageia: Security Advisory (MGASA-2022-0446)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7AI score0.0238EPSS
Exploits4References18
OpenVAS
OpenVAS
added 2022/11/25 12:0 a.m.32 views

Ubuntu: Security Advisory (USN-5736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS6.8AI score0.0238EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2022/11/24 8:11 a.m.72 views

USN-5736-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled certain values when processing PDF files. If a user or automated system using ImageMagick were tricked into opening a specially crafted PDF file, an attacker could exploit this to cause a denial of service. This issue only affected Ubuntu 14....

7.8CVSS6.6AI score0.0238EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2022/09/09 12:0 a.m.36 views

SUSE SLED12: ImageMagick / ImageMagick-config-6-SUSE / etc (SUSE-SU-2022:3138-1)

The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2022:3138-1 advisory. - CVE-2021-20224: Fixed an integer overflow that could be triggered via a crafted file bsc1202800. Tenable has extracte...

5.5CVSS6.9AI score0.00365EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/09/09 12:0 a.m.42 views

ImageMagick < 7.0.10-57 Integer Overflow

The remote Windows host has a version of ImageMagick installed that is prior 7.0.10-57. It is, therefore, affected by an integer overflow error in the GetPixelIndex function. An attacker can craft a malicious PDF file that, when processed by ImageMagick, results in undefined behavior or a crash...

5.5CVSS7AI score0.00365EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2022/09/08 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2022:3138-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS7.3AI score0.00365EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2022/09/07 12:0 a.m.21 views

SUSE: Security Advisory (SUSE-SU-2022:3119-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS6AI score0.00365EPSS
Exploits0References2
OSV
OSV
added 2022/09/06 1:59 p.m.9 views

SUSE-SU-2022:3119-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2021-20224: Fixed an integer overflow that could be triggered via a crafted file bsc1202800. - CVE-2022-2719: Fixed a reachable assertion that could lead to denial of service via a crafted file bsc1202250...

5.5CVSS6.3AI score0.00365EPSS
Exploits0References5
OSV
OSV
added 2022/08/25 8:15 p.m.27 views

CVE-2021-20224

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to GetPixelIndex could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead t...

5.5CVSS6.7AI score
Exploits0References4
Debian CVE
Debian CVE
added 2022/08/25 12:0 a.m.94 views

CVE-2021-20224

An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum function in MagickCore/quantum-export.c. Function calls to GetPixelIndex could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead t...

5.5CVSS5.8AI score0.00365EPSS
Exploits0
CVE
CVE
added 2022/08/25 12:0 a.m.113 views

CVE-2021-20224

CVE-2021-20224 is an ImageMagick vulnerability: an integer overflow in MagickCore/quantum-export.c (ExportIndexQuantum) where GetPixelIndex() can produce values outside the range of an unsigned char when processing crafted PDFs, potentially causing undefined behavior or a crash. The issue is docu...

5.5CVSS6.2AI score0.00365EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder