Lucene search
K

14 matches found

Tenable Nessus
Tenable Nessus
added 2024/07/26 12:0 a.m.29 views

Ubuntu 20.04 LTS / 22.04 LTS : ImageMagick vulnerabilities (USN-6200-2)

The remote Ubuntu 20.04 LTS / 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6200-2 advisory. USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This...

5.5CVSS6.6AI score0.01018EPSS
Exploits2References3
Ubuntu
Ubuntu
added 2024/07/25 11:55 p.m.57 views

USN-6200-2: ImageMagick vulnerabilities

USN-6200-1 fixed vulnerabilities in ImageMagick. Unfortunately these fixes were incomplete for Ubuntu 20.04 LTS, and Ubuntu 22.04 LTS. This update fixes the problem. Original advisory details: It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected...

5.5CVSS7AI score0.01018EPSS
Exploits2
OSV
OSV
added 2024/03/15 10:51 p.m.11 views

MGASA-2024-0064 Updated imagemagick packages fix security vulnerabilities

The updated packages fix security vulnerabilities: A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation...

7.5CVSS7.2AI score0.0272EPSS
Exploits2References3
NVD
NVD
added 2023/10/04 7:15 p.m.18 views

CVE-2023-3428

A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and denial of service...

6.2CVSS6.4AI score0.00314EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/04 6:2 p.m.24 views

CVE-2023-3428 Imagemagick: heap-buffer-overflow in coders/tiff.c

A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and denial of service...

6.2CVSS6.9AI score0.00314EPSS
Exploits0References2
CVE
CVE
added 2023/10/04 6:2 p.m.139 views

CVE-2023-3428

CVE-2023-3428 is a heap-based buffer overflow vulnerability in ImageMagick's coders/tiff.c. A local attacker could trick a user into opening a crafted TIFF file, resulting in an application crash and denial of service. Public advisories (e.g., Debian DSA-5628-1 and ALAS/Cloud Foundry notices) ind...

6.2CVSS6AI score0.00314EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/29 11:5 a.m.4 views

OESA-2023-1442 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

6.2CVSS7.1AI score0.00314EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.39 views

Amazon Linux 2 : ImageMagick (ALAS-2023-2123)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2123 advisory. The upstream bug report describes this issue as follows:A vulnerability was found in ImageMagick =7.1.1, where heap-based...

6.2CVSS6.7AI score0.00314EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/07/20 12:0 a.m.32 views

Amazon Linux AMI : ImageMagick (ALAS-2023-1781)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1.26. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2023-1781 advisory. stack overflow when parsing malicious tiff image CVE-2023-3195 The upstream bug report describes this issue as...

6.2CVSS6.8AI score0.00503EPSS
Exploits1References6
Amazon
Amazon
added 2023/07/19 12:0 a.m.28 views

Medium: ImageMagick

Issue Overview: The upstream bug report describes this issue as follows: "A vulnerability was found in ImageMagick =7.1.1, where heap-based buffer overflow was found in coders/tiff.c." CVE-2023-3428 Affected Packages: ImageMagick Note: This advisory is applicable to Amazon Linux 2 AL2 Core...

6.2CVSS6.6AI score0.00314EPSS
Exploits0
Amazon
Amazon
added 2023/07/19 12:0 a.m.6 views

Medium: ImageMagick

Issue Overview: The upstream bug report describes this issue as follows: "A vulnerability was found in ImageMagick =7.1.1, where heap-based buffer overflow was found in coders/tiff.c." CVE-2023-3428 Affected Packages: ImageMagick Issue Correction: Run dnf update ImageMagick --releasever...

6.2CVSS6.5AI score0.00314EPSS
Exploits0
Amazon
Amazon
added 2023/07/19 12:0 a.m.39 views

Medium: ImageMagick

Issue Overview: stack overflow when parsing malicious tiff image CVE-2023-3195 The upstream bug report describes this issue as follows: "A vulnerability was found in ImageMagick =7.1.1, where heap-based buffer overflow was found in coders/tiff.c." CVE-2023-3428 Affected Packages: ImageMagick Issu...

6.2CVSS6.7AI score0.00503EPSS
Exploits1
Ubuntu
Ubuntu
added 2023/07/04 9:23 a.m.436 views

USN-6200-1: ImageMagick vulnerabilities

It was discovered that ImageMagick incorrectly handled the "-authenticate" option for password-protected PDF files. An attacker could possibly use this issue to inject additional shell commands and perform arbitrary code execution. This issue only affected Ubuntu 20.04 LTS. CVE-2020-29599 It was...

7.8CVSS6.9AI score0.07508EPSS
Exploits6
RedhatCVE
RedhatCVE
added 2023/06/28 10:21 p.m.36 views

CVE-2023-3428

A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and denial of service...

6.2CVSS6.5AI score0.00314EPSS
Exploits0References3
Rows per page
Query Builder