Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-25663

A call to ConformPixelInfo() in the SetImageAlphaChannel() routine of /MagickCore/channel.c caused a subsequent heap-use-after-free or heap-buffer-overflow READ when GetPixelRed() or GetPixelBlue() was called. This could occur if an attacker is able to submit a malicious image file to be processed by ImageMagick and could lead to denial of service. It likely would not lead to anything further because the memory is used as pixel data and not e.g. a function pointer. This flaw affects ImageMagick versions prior to 7.0.9-0.

Published

2020-12-08T21:15:12.420

Last Modified

2024-11-21T05:18:23.650

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.5 (MEDIUM)

CVSSv2 Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: PARTIAL

Exploitability Score

8.6

Impact Score

2.9

Weaknesses

Type: Primary
CWE-416

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	imagemagick	imagemagick	< 7.0.8-56	Yes

References

https://bugzilla.redhat.com/show_bug.cgi?id=1891601 Issue Tracking, Patch, Third Party Advisory ([email protected])
https://github.com/ImageMagick/ImageMagick/issues/1723 Exploit, Third Party Advisory ([email protected])
https://github.com/ImageMagick/ImageMagick/issues/1723#issuecomment-718275153 Third Party Advisory ([email protected])
https://bugzilla.redhat.com/show_bug.cgi?id=1891601 Issue Tracking, Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/ImageMagick/ImageMagick/issues/1723 Exploit, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/ImageMagick/ImageMagick/issues/1723#issuecomment-718275153 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)