Vulnerabilities

CVE-2020-27770

by Fred · 04/12/2020

Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to 7.0.8-68.

Date published : 2020-12-04

https://bugzilla.redhat.com/show_bug.cgi?id=1894691

https://lists.debian.org/debian-lts-announce/2021/03/msg00030.html

Similar

Tags: Cybersecurity Alert