vulnerability

Red Hat: CVE-2018-8804: Moderate: ImageMagick security, bug fix, and enhancement update (RHSA-2020:1180)

Name: Red Hat: CVE-2018-8804: Moderate: ImageMagick security, bug fix, and enhancement update (RHSA-2020:1180)
Creator: Red Hat
Published: 2018-03-20T00:00:00.000Z
Keywords: CVE, Red Hat, 2018, 8804, Moderate, redhat-upgrade-autotrace, redhat-upgrade-autotrace-debuginfo, redhat-upgrade-autotrace-devel, redhat-upgrade-imagemagick, redhat-upgrade-imagemagick-c, redhat-upgrade-imagemagick-c-devel, redhat-upgrade-imagemagick-debuginfo, redhat-upgrade-imagemagick-devel, redhat-upgrade-imagemagick-doc, redhat-upgrade-imagemagick-perl, redhat-upgrade-inkscape, redhat-upgrade-inkscape-debuginfo, redhat-upgrade-inkscape-docs, redhat-upgrade-inkscape-view, Severity 7

Try Surface Command

Back to search

Severity

CVSS

(AV:N/AC:M/Au:N/C:P/I:P/A:P)

Published

Mar 20, 2018

Added

Apr 1, 2020

Modified

Feb 19, 2026

Description

WriteEPTImage in coders/ept.c in ImageMagick 7.0.7-25 Q16 allows remote attackers to cause a denial of service (MagickCore/memory.c double free and application crash) or possibly have unspecified other impact via a crafted file.

Solutions

redhat-upgrade-autotraceredhat-upgrade-autotrace-debuginforedhat-upgrade-autotrace-develredhat-upgrade-imagemagickredhat-upgrade-imagemagick-credhat-upgrade-imagemagick-c-develredhat-upgrade-imagemagick-debuginforedhat-upgrade-imagemagick-develredhat-upgrade-imagemagick-docredhat-upgrade-imagemagick-perlredhat-upgrade-inkscaperedhat-upgrade-inkscape-debuginforedhat-upgrade-inkscape-docsredhat-upgrade-inkscape-view

References

NVD-CVE-2018-8804

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report