vulnerability
FreeBSD: VID-A7C60AF1-B3F1-11EB-A5F7-A0F3C100AE18 (CVE-2021-20310): ImageMagick7 -- multiple vulnerabilities
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 8 | (AV:N/AC:L/Au:N/C:N/I:N/A:C) | Oct 27, 2020 | Nov 4, 2022 | Nov 4, 2022 |
Severity
8
CVSS
(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Published
Oct 27, 2020
Added
Nov 4, 2022
Modified
Nov 4, 2022
Description
A flaw was found in ImageMagick in versions before 7.0.11, where a division by zero ConvertXYZToJzazbz() of MagickCore/colorspace.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.
Solutions
freebsd-upgrade-package-imagemagick7freebsd-upgrade-package-imagemagick7-nox11
References
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.