CVE-2020-27760
03.12.2020, 17:15
In `GammaImage()` of /MagickCore/enhance.c, depending on the `gamma` value, it's possible to trigger a divide-by-zero condition when a crafted input file is processed by ImageMagick. This could lead to an impact to application availability. The patch uses the `PerceptibleReciprocal()` to prevent the divide-by-zero from occurring. This flaw affects ImageMagick versions prior to ImageMagick 7.0.8-68.Enginsight
Vendor | Product | Version |
---|---|---|
imagemagick | imagemagick | 𝑥 < 6.9.10-68 |
imagemagick | imagemagick | 7.0.0-0 ≤ 𝑥 < 7.0.8-68 |
debian | debian_linux | 9.0 |
𝑥
= Vulnerable software versions

Debian Releases

Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
imagemagick |
|
Common Weakness Enumeration
References