摘要:
A heap-based-buffer-over-read flaw was found in ImageMagick s GetPixelAlpha() function of pixel-accessor.h . This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can potentially lead to a denial of service and information disclosure.
安全等级: Low
公告ID: KylinSec-SA-2024-1576
发布日期: 2024年5月27日
关联CVE: CVE-2022-0284
A heap-based-buffer-over-read flaw was found in ImageMagick s GetPixelAlpha() function of pixel-accessor.h . This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can potentially lead to a denial of service and information disclosure.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2022-0284 | KY3.4-4A | ImageMagick | Unaffected |
| CVE-2022-0284 | KY3.4-5A | ImageMagick | Unaffected |
| CVE-2022-0284 | KY3.5.1 | ImageMagick | Unaffected |
| CVE-2022-0284 | KY3.5.2 | ImageMagick | Unaffected |
| CVE-2022-0284 | V6 | ImageMagick | Unaffected |
