Lucene search
K

116 matches found

OSV
OSV
added 2025/11/05 2:51 p.m.0 views

SUSE-SU-2025:3956-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2025-62594: Fixed unsigned underflow and division-by-zero that can lead to OOB pointer arithmetic and process crash. bsc1252749...

5.5CVSS6.4AI score0.00334EPSS
Exploits1References3
OSV
OSV
added 2025/10/31 2:13 p.m.2 views

OESA-2025-2587 ImageMagick security update

Use ImageMagick to create, edit, compose, or convert bitmap images. It can read and write images in a variety of formats over 200 including PNG, JPEG, GIF, HEIC, TIFF, DPX, EXR, WebP, Postscript, PDF, and SVG. Use ImageMagick to resize, flip, mirror, rotate, distort, shear and transform images,...

5.5CVSS6.8AI score0.00334EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/10/29 12:23 a.m.4 views

SUSE CVE-2025-62594

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

5.3CVSS6.8AI score0.00334EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/10/28 5:12 a.m.13 views

CVE-2025-62594

A vulnerability in ImageMagick’s CLAHEImage function in MagickCore/enhance.c allows a zero tile width or height to trigger unsigned integer underflow and division-by-zero conditions. When tileinfo.height or tileinfo.width becomes zero, pointer arithmetic using these values can result in...

5.5CVSS6.7AI score0.00334EPSS
Exploits1References5
Tenable Nessus
Tenable Nessus
added 2025/10/28 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-62594

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service du...

5.5CVSS5.8AI score0.00334EPSS
Exploits1References3
Github Security Blog
Github Security Blog
added 2025/10/27 11:33 p.m.9 views

ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)

Summary A single root cause in the CLAHE implementation — tile width/height becoming zero — produces two distinct but related unsafe behaviors. Vulnerabilities exists in the CLAHEImage function of ImageMagick’s MagickCore/enhance.c. 1. Unsigned integer underflow → out-of-bounds pointer arithmetic...

5.5CVSS7.8AI score0.00334EPSS
Exploits1References4Affected Software12
EUVD
EUVD
added 2025/10/27 11:33 p.m.3 views

EUVD-2025-36365

ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash DoS...

4.7CVSS6.2AI score0.00334EPSS
Exploits1References3
OSV
OSV
added 2025/10/27 11:33 p.m.2 views

GHSA-WPP4-VQFQ-V4HP ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)

Summary A single root cause in the CLAHE implementation — tile width/height becoming zero — produces two distinct but related unsafe behaviors. Vulnerabilities exists in the CLAHEImage function of ImageMagick’s MagickCore/enhance.c. 1. Unsigned integer underflow → out-of-bounds pointer arithmetic...

4.7CVSS7.8AI score0.00334EPSS
Exploits1References4
NVD
NVD
added 2025/10/27 8:15 p.m.4 views

CVE-2025-62594

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

5.5CVSS0.00334EPSS
Exploits1References2
OSV
OSV
added 2025/10/27 8:15 p.m.3 views

UBUNTU-CVE-2025-62594

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

5.5CVSS5.7AI score0.00334EPSS
Exploits1References5
Cvelist
Cvelist
added 2025/10/27 8:0 p.m.7 views

CVE-2025-62594 ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

4.7CVSS0.00334EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/10/27 8:0 p.m.2 views

CVE-2025-62594 ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

4.7CVSS6.4AI score0.00334EPSS
Exploits1References2
CVE
CVE
added 2025/10/27 8:0 p.m.114 views

CVE-2025-62594

CVE-2025-62594 affects ImageMagick up to version 7.1.2-7 (pre-patch). The vulnerability is due to unsigned integer underflow and a division-by-zero in CLAHEImage when tile width or height is zero, causing out-of-bounds access and a crash. The issue is fixed in 7.1.2-8. Affected platforms referenc...

5.5CVSS6.4AI score0.00334EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2025/10/27 8:0 p.m.2 views

CVE-2025-62594 ImageMagick CLAHE : Unsigned underflow and division-by-zero lead to OOB pointer arithmetic and process crash (DoS)

ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick versions prior to 7.1.2-8 are vulnerable to denial-of-service due to unsigned integer underflow and division-by-zero in the CLAHEImage function. When tile width or height is zero, unsigned underflow...

4.7CVSS6.8AI score0.00334EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/10/27 12:0 a.m.4 views

ImageMagick 数字错误漏洞

ImageMagick is a suite of open source image processing software from ImageMagick Open Source. It can read, convert, or write images in a variety of formats. A numeric error vulnerability exists in versions of ImageMagick prior to 7.1.2-8, which stems from an unsigned integer underflow and...

5.5CVSS6.2AI score0.00334EPSS
Exploits1References2
SUSE CVE
SUSE CVE
added 2025/07/28 11:33 p.m.4 views

SUSE CVE-2024-55627

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer...

7.5CVSS7.3AI score0.00984EPSS
Exploits0References2
OSV
OSV
added 2025/06/18 11:15 a.m.4 views

UBUNTU-CVE-2022-50036

In the Linux kernel, the following vulnerability has been resolved: drm/sun4i: dsi: Prevent underflow when computing packet sizes Currently, the packet overhead is subtracted using unsigned arithmetic. With a short sync pulse, this could underflow and wrap around to near the maximal u16 value. Fi...

5.5CVSS6.1AI score0.00155EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.5 views

CryptoLib 数字错误漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A numeric error vulnerability exists in CryptoLib 1.3.3 and prior versions that stems from an unsigned integer underflow in the CryptoTCPrepAAD function,...

9.8CVSS7.4AI score0.00657EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/03/17 12:0 a.m.7 views

CryptoLib 安全漏洞

CryptoLib is a NASA open source application. It is used to provide a software-only solution using the CCSDS space data link security protocol. A security vulnerability exists in CryptoLib 1.3.3 and prior versions that stems from an unsigned integer underflow in the CryptoTCProcessSecurity functio...

9.8CVSS7.8AI score0.01129EPSS
Exploits1References3
OSV
OSV
added 2025/01/06 6:15 p.m.2 views

UBUNTU-CVE-2024-55627

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer...

7.5CVSS6AI score0.00984EPSS
Exploits0References7
Rows per page
Query Builder