Nixpkgs security tracker

Permalink CVE-2021-3610

updated 1 month, 2 weeks ago by @LeSuisse Activity log

Created automatic suggestion 2 months, 2 weeks ago
@LeSuisse ignored
3 packages
- tests.pkg-config.defaultPkgConfigPackages.ImageMagick
- tests.pkg-config.defaultPkgConfigPackages.MagickWand
- graphicsmagick-imagemagick-compat
1 month, 2 weeks ago
@LeSuisse dismissed 1 month, 2 weeks ago

A heap-based buffer overflow vulnerability was found in ImageMagick in …

A heap-based buffer overflow vulnerability was found in ImageMagick in versions prior to 7.0.11-14 in ReadTIFFImage() in coders/tiff.c. This issue is due to an incorrect setting of the pixel array size, which can lead to a crash and segmentation fault.

References

https://bugzilla.redhat.com/show_bug.cgi?id=1973689
https://github.com/ImageMagick/ImageMagick/commit/930ff0d1a9bc42925a7856e9ea53f…
[oss-security] 20230529 Update CVE-2021-3610: ImageMagick mailing-list
[oss-security] 20230605 RE: Update CVE-2021-3610 mailing-list
https://bugzilla.redhat.com/show_bug.cgi?id=1973689 x_transferred
https://github.com/ImageMagick/ImageMagick/commit/930ff0d1a9bc42925a7856e9ea53f… x_transferred
[oss-security] 20230529 Update CVE-2021-3610: ImageMagick mailing-listx_transferred
[oss-security] 20230605 RE: Update CVE-2021-3610 mailing-listx_transferred
https://bugzilla.redhat.com/show_bug.cgi?id=1973689
https://github.com/ImageMagick/ImageMagick/commit/930ff0d1a9bc42925a7856e9ea53f…
[oss-security] 20230529 Update CVE-2021-3610: ImageMagick mailing-list
[oss-security] 20230605 RE: Update CVE-2021-3610 mailing-list
https://github.com/fuzzing2026/CVE-PoCs/tree/main/imagemagick-CVE-2021-3610
https://bugzilla.redhat.com/show_bug.cgi?id=1973689 x_transferred
https://github.com/ImageMagick/ImageMagick/commit/930ff0d1a9bc42925a7856e9ea53f… x_transferred
[oss-security] 20230529 Update CVE-2021-3610: ImageMagick mailing-listx_transferred
[oss-security] 20230605 RE: Update CVE-2021-3610 mailing-listx_transferred

Affected products

ImageMagick

==ImageMagick 7.0.11-14