Lucene search

Veracode Vulnerability DatabaseVERACODE:28290

HistoryDec 06, 2020 - 3:56 a.m.

NULL Pointer Dereference

2020-12-0603:56:40

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

0.01 Low

EPSS

Percentile

83.4%

JSON

ImageMagick is vulnerable to NULL Pointer Dereference vulnerability. A memory error in the function sixel_decode in coders/sixel.c causes denial of service conditions.

CPENameOperatorVersion
imagemagick:stretcheq8:6.9.7.4+dfsg-11+deb9u8
imagemagick:stretcheq8:6.9.7.4+dfsg-11+deb9u8

CPE	Name	Operator	Version
	imagemagick:stretch	eq	8:6.9.7.4+dfsg-11+deb9u8
	imagemagick:stretch	eq	8:6.9.7.4+dfsg-11+deb9u8

References

www.securityfocus.com/bid/100943

github.com/ImageMagick/ImageMagick/issues/720

github.com/ImageMagick/ImageMagick/issues/721

lists.debian.org/debian-lts-announce/2019/05/msg00015.html

lists.debian.org/debian-lts-announce/2020/09/msg00007.html

security-tracker.debian.org/tracker/CVE-2017-14626

usn.ubuntu.com/3681-1/

0.01 Low

EPSS

Percentile

83.4%

JSON

Related for VERACODE:28290