EUVD-2026-37766

Impact: Undici's cache interceptor incorrectly classifies some responses as cacheable when the upstream Cache-Control header uses whitespace-padded qualified private or no-cache field names such as private=" authorization" or no-cache="\tauthorization". The parser preserves the surrounding...

Astra Linux – Vulnerability in imagemagick

In ImageMagick, there is a value of the type 'unsigned int' that is outside the representable range in MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

MiracleLinux 7 : harfbuzz-1.7.5-2.0.1.el7.AXS7 (AXSA:2024-8760:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2024-8760:03 advisory. CVE-2023-25193: optimize looking back for base glyphs in hb-ot-layout-gsubgpos-private.hh CVEs: CVE-2023-25193 hb-ot-layout-gsubgpos.hh in HarfBuzz through...

CLSA-2024-1731956848 ImageMagick: Fix of 3 CVEs

CVE-2020-27751: fix shift exponent that is too large for 64-bit type at magick/quantum-export.c - CVE-2020-27757: fix outside the range of representable values of type 'unsigned long long' bug at magick/quantum-private.h - CVE-2020-27768: fix outside the range of representable values of type...

CLSA-2024-1731432106 ImageMagick: Fix of 2 CVEs

CVE-2020-27751: fix undefined behavior due to an overly large shift exponent in quantum-export.c - CVE-2020-27768: fix NaN being outside the range of representable values issue in quantum-private.h...

SUSE CVE-2020-27768

In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

CVE-2022-1115

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service...

DEBIAN-CVE-2022-1115

A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel function of quantum-private.h file. This vulnerability is triggered when an attacker passes a specially crafted TIFF image file to ImageMagick for conversion, potentially leading to a denial of service...

The vulnerability of the MagickCore/gem-private.h component of the console-based image editing tool ImageMagick, related to division by zero, allows a hacker to cause a service failure.

The vulnerability of the MagickCore/gem-private.h component in the console-based image editing tool ImageMagick is related to division by zero. Exploiting this vulnerability allows a remote attacker to cause a service failure using a specially created file...

The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the console-based image editing tool ImageMagick, related to the assignment of a null pointer, allows a malicious actor to trigger a service failure.

The vulnerability of the AcquireResampleFilterThreadSet function in the magick/resample-private.h component of the ImageMagick console graphics editor is related to the use of a null pointer. Exploiting this vulnerability allows an attacker to cause a service failure...

DEBIAN-CVE-2020-27768

In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

UBUNTU-CVE-2020-27768

In ImageMagick, there is an outside the range of representable values of type 'unsigned int' at MagickCore/quantum-private.h. This flaw affects ImageMagick versions prior to 7.0.9-0...

ImageMagick Buffer Overflow Vulnerability (CNVD-2019-29246)

ImageMagick is the United States ImageMagick Studio company's set of open source image processing software. A heap-based buffer overflow vulnerability exists in the 'PushShortPixel' function of the MagickCore/quantum-private.h file in ImageMagick version 7.0.8-11 Q16. An attacker could exploit th...

DEBIAN-CVE-2014-9839

magick/colormap-private.h in ImageMagick 6.8.9-9 allows remote attackers to cause a denial of service out-of-bounds access...