vulnerability

FreeBSD: VID-A7C60AF1-B3F1-11EB-A5F7-A0F3C100AE18 (CVE-2021-20312): ImageMagick7 -- multiple vulnerabilities

Try Surface Command

Back to search

Severity	CVSS	Published	Added	Modified
8	(AV:N/AC:L/Au:N/C:N/I:N/A:C)	2020-10-27	2022-11-04	2022-11-04

Severity

CVSS

(AV:N/AC:L/Au:N/C:N/I:N/A:C)

Published

2020-10-27

Added

2022-11-04

Modified

2022-11-04

Description

A flaw was found in ImageMagick in versions 7.0.11, where an integer overflow in WriteTHUMBNAILImage of coders/thumbnail.c may trigger undefined behavior via a crafted image file that is submitted by an attacker and processed by an application using ImageMagick. The highest threat from this vulnerability is to system availability.

Solution(s)

freebsd-upgrade-package-imagemagick7freebsd-upgrade-package-imagemagick7-nox11

References

NVD-CVE-2021-20312
UBUNTU-USN-5158-1

NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today