CVE-2020-27757

A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is processed by...

Design/Logic Flaw

A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is processed by...

Design/Logic Flaw

A flaw was found in ImageMagick in MagickCore/quantum-export.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long long as well as a shift exponent that is too large for 64-bit type...

UBUNTU-CVE-2020-27757

A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is processed by...

CVE-2020-27758

A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long long. This would most likely lead to an impact to application availability, but...

CVE-2020-27757

A floating point math calculation in ScaleAnyToQuantum of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. The flaw could be triggered by a crafted input file under certain conditions when it is processed by...

ImageMagick Studio ImageMagick Input Validation Error Vulnerability

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert, or write images in a variety of formats. A security vulnerability exists in ImageMagick, which stems from a flaw foun...

CVE-2020-27757

CVE-2020-27757 : In ImageMagick, a floating-point calculation in ScaleAnyToQuantum() (MagickCore/quantum-private.h) can overflow the range of unsigned long long, causing undefined behavior when processing crafted input files. Affected: ImageMagick versions prior to 7.0.8-68. Root cause: floating-...

CVE-2020-27758

A flaw was found in ImageMagick in coders/txt.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned long long. This would most likely lead to an impact to application availability, but...

ImageMagick exceeds the range of representable values of type 'unsigned long' Vulnerability

ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. A vulnerability exists in MagickCore/statistic.c in versions of ImageMagick prior to 7.0.8-69 that exceeds the range of representable values of type 'unsigned long'. An...

ImageMagick Input Validation Error Vulnerability (CNVD-2021-10259)

ImageMagick is a software for creating, editing, and composing images that can read, convert, and write images in many formats. ImageMagick Input Validation Error Vulnerability, coders/bmp.c in versions of ImageMagick prior to 7.0.9-0, exists outside the range of representable values of type...

Imagemagick Studio ImageMagick Input Validation Error Vulnerability (CNVD-2020-70257)

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in versions prior to ImageMagick 7.0.8-68, which stem...

Imagemagick Studio ImageMagick Input Validation Error Vulnerability (CNVD-2020-70258)

Imagemagick Studio ImageMagick is a suite of open source image processing software from ImageMagick Studio Imagemagick Studio, an American company. The software can read, convert or write images in many formats. A security vulnerability exists in ImageMagick versions prior to 7.0.9-0, which stems...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service DoS. The vulnerability exists through coders/bmp.c when a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int...

Undefined Behavior

In RestoreMSCWarning of /coders/pdf.c there are several areas where calls to GetPixelIndex could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex to ssizet type to avoid this bug. This undefined behavior could be...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service DoS. The vulnerability exists through a flaw in MagickCore/quantum.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of types float and unsigned char...

Denial Of Service (DoS)

imagemagick is vulnerable to denial of service. An outside the range of representable values of type unsigned long long bug in MagickCore/quantum-private.h allows an attacker to crash the application...

CVE-2020-27773

A flaw was found in ImageMagick in MagickCore/gem-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char or division by zero. This would most likely lead to an impact to...

CVE-2020-27772

A flaw was found in ImageMagick in coders/bmp.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned int. This would most likely lead to an impact to application availability, but could...

UBUNTU-CVE-2020-27773

A flaw was found in ImageMagick in MagickCore/gem-private.h. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of values outside the range of type unsigned char or division by zero. This would most likely lead to an impact to...