摘要:
A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
安全等级: Low
公告ID: KylinSec-SA-2022-1308
发布日期: 2022年11月18日
关联CVE: CVE-2021-3610
A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.
| cve名称 | 产品 | 组件 | 是否受影响 |
|---|---|---|---|
| CVE-2021-3610 | KY3.4-4A | ImageMagick | Unaffected |
| CVE-2021-3610 | KY3.4-5 | ImageMagick | Unaffected |
| CVE-2021-3610 | KY3.5.1 | ImageMagick | Unaffected |
