Vulnerabilities > Imagemagick

DATE CVE VULNERABILITY TITLE RISK
2020-12-04 CVE-2020-27774 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/statistic.c.
local
low complexity
imagemagick redhat debian CWE-190
3.3
3.3
2020-12-04 CVE-2020-27771 Integer Overflow or Wraparound vulnerability in multiple products
In RestoreMSCWarning() of /coders/pdf.c there are several areas where calls to GetPixelIndex() could result in values outside the range of representable for the unsigned char type.
local
low complexity
imagemagick redhat debian CWE-190
3.3
3.3
2020-12-04 CVE-2020-27770 Integer Overflow or Wraparound vulnerability in multiple products
Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability.
local
low complexity
imagemagick debian CWE-190
5.5
5.5
2020-12-04 CVE-2020-27767 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/quantum.h.
local
low complexity
imagemagick redhat debian CWE-190
3.3
3.3
2020-12-04 CVE-2020-27766 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/statistic.c.
local
low complexity
imagemagick debian CWE-190
7.8
7.8
2020-12-04 CVE-2020-27765 Divide By Zero vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/segment.c.
local
low complexity
imagemagick redhat debian CWE-369
3.3
3.3
2020-12-03 CVE-2020-27764 Integer Overflow or Wraparound vulnerability in multiple products
In /MagickCore/statistic.c, there are several areas in ApplyEvaluateOperator() where a size_t cast should have been a ssize_t cast, which causes out-of-range values under some circumstances when a crafted input file is processed by ImageMagick.
local
low complexity
imagemagick debian CWE-190
3.3
3.3
2020-12-03 CVE-2020-27763 Divide By Zero vulnerability in multiple products
A flaw was found in ImageMagick in MagickCore/resize.c.
local
low complexity
imagemagick debian CWE-369
3.3
3.3
2020-12-03 CVE-2020-27762 Integer Overflow or Wraparound vulnerability in multiple products
A flaw was found in ImageMagick in coders/hdr.c.
local
low complexity
imagemagick debian CWE-190
5.5
5.5
2020-12-03 CVE-2020-27761 Integer Overflow or Wraparound vulnerability in multiple products
WritePALMImage() in /coders/palm.c used size_t casts in several areas of a calculation which could lead to values outside the range of representable type `unsigned long` undefined behavior when a crafted input file was processed by ImageMagick.
local
low complexity
imagemagick debian CWE-190
3.3
3.3