Vulnerabilities > Debian
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-12-08 | CVE-2020-27758 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in coders/txt.c. | 3.3 |
| 2020-12-08 | CVE-2020-27757 | Integer Overflow or Wraparound vulnerability in multiple products A floating point math calculation in ScaleAnyToQuantum() of /MagickCore/quantum-private.h could lead to undefined behavior in the form of a value outside the range of type unsigned long long. | 3.3 |
| 2020-12-08 | CVE-2020-27754 | Integer Overflow or Wraparound vulnerability in multiple products In IntensityCompare() of /magick/quantize.c, there are calls to PixelPacketIntensity() which could return overflowed values to the caller when ImageMagick processes a crafted input file. | 3.3 |
| 2020-12-08 | CVE-2020-27751 | Integer Overflow or Wraparound vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/quantum-export.c. | 3.3 |
| 2020-12-08 | CVE-2020-27750 | Divide By Zero vulnerability in multiple products A flaw was found in ImageMagick in MagickCore/colorspace-private.h and MagickCore/quantum.h. | 5.5 |
| 2020-12-08 | CVE-2020-25676 | Integer Overflow or Wraparound vulnerability in multiple products In CatromWeights(), MeshInterpolate(), InterpolatePixelChannel(), InterpolatePixelChannels(), and InterpolatePixelInfo(), which are all functions in /MagickCore/pixel.c, there were multiple unconstrained pixel offset calculations which were being used with the floor() function. | 5.5 |
| 2020-12-08 | CVE-2020-25675 | Integer Overflow or Wraparound vulnerability in multiple products In the CropImage() and CropImageToTiles() routines of MagickCore/transform.c, rounding calculations performed on unconstrained pixel offsets was causing undefined behavior in the form of integer overflow and out-of-range values as reported by UndefinedBehaviorSanitizer. | 3.3 |
| 2020-12-08 | CVE-2020-25674 | Heap-based Buffer Overflow vulnerability in multiple products WriteOnePNGImage() from coders/png.c (the PNG coder) has a for loop with an improper exit condition that can allow an out-of-bounds READ via heap-buffer-overflow. | 5.5 |
| 2020-12-08 | CVE-2020-25666 | Integer Overflow or Wraparound vulnerability in multiple products There are 4 places in HistogramCompare() in MagickCore/histogram.c where an integer overflow is possible during simple math calculations. | 3.3 |
| 2020-12-08 | CVE-2020-25665 | Out-of-bounds Read vulnerability in multiple products The PALM image coder at coders/palm.c makes an improper call to AcquireQuantumMemory() in routine WritePALMImage() because it needs to be offset by 256. | 5.5 |