CVE-2022-1270
28.09.2022, 20:15
In GraphicsMagick, a heap buffer overflow was found when parsing MIFF.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| graphicsmagick | graphicsmagick | 1.4.020220326 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
openSUSE / SLES Releases
openSUSE Product | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| ImageMagick |
| ||||||||||||||
| ImageMagick-config-6-SUSE |
| ||||||||||||||
| ImageMagick-config-6-upstream |
| ||||||||||||||
| libMagick++-6_Q16-3 |
| ||||||||||||||
| libMagickCore-6_Q16-1 |
| ||||||||||||||
| libMagickCore-6_Q16-1-32bit |
| ||||||||||||||
| libMagickWand-6_Q16-1 |
|
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| GraphicsMagick |
| ||||
| GraphicsMagick-c++ |
| ||||
| GraphicsMagick-c++-debuginfo |
| ||||
| GraphicsMagick-c++-devel |
| ||||
| GraphicsMagick-debuginfo |
| ||||
| GraphicsMagick-debugsource |
| ||||
| GraphicsMagick-devel |
| ||||
| GraphicsMagick-doc |
| ||||
| GraphicsMagick-perl |
| ||||
| GraphicsMagick-perl-debuginfo |
|
Common Weakness Enumeration
- CWE-119 - Improper Restriction of Operations within the Bounds of a Memory BufferThe software performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.
- CWE-787 - Out-of-bounds WriteThe software writes data past the end, or before the beginning, of the intended buffer.
References