Vulnerabilities > CVE-2023-5349 - Memory Leak vulnerability in multiple products
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
LOW Summary
A memory leak flaw was found in ruby-magick, an interface between Ruby and ImageMagick. This issue can lead to a denial of service (DOS) by memory exhaustion.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
References
- https://access.redhat.com/security/cve/CVE-2023-5349
- https://access.redhat.com/security/cve/CVE-2023-5349
- https://bugzilla.redhat.com/show_bug.cgi?id=2247064
- https://bugzilla.redhat.com/show_bug.cgi?id=2247064
- https://github.com/rmagick/rmagick/issues/1401
- https://github.com/rmagick/rmagick/issues/1401
- https://github.com/rmagick/rmagick/pull/1406
- https://github.com/rmagick/rmagick/pull/1406
- https://lists.fedoraproject.org/archives/list/[email protected]/message/S3XMQ2KWPYGT447EKPENGXXHKAQ5NUWF/
- https://lists.fedoraproject.org/archives/list/[email protected]/message/S3XMQ2KWPYGT447EKPENGXXHKAQ5NUWF/