Your submission was sent successfully! Close

CVE-2020-27829

Published: 26 March 2021

A heap based buffer overflow in coders/tiff.c may result in program crash and denial of service in ImageMagick before 7.0.10-45.

Priority

Medium

CVSS 3 base score: 5.5

Status

Package Release Status
imagemagick
Launchpad, Ubuntu, Debian
bionic Not vulnerable
(code not present)
focal Not vulnerable
(code not present)
groovy Not vulnerable
(code not present)
hirsute Not vulnerable
(8:6.9.11.60+dfsg-1ubuntu1)
impish Not vulnerable
(8:6.9.11.60+dfsg-1ubuntu1)
jammy Not vulnerable
(8:6.9.11.60+dfsg-1ubuntu1)
precise Does not exist

trusty Does not exist

upstream
Released (8:6.9.11.57+dfsg-1)
xenial Not vulnerable
(code not present)

Notes

AuthorNote
mdeslaur
introduced by:
https://github.com/ImageMagick/ImageMagick6/commit/b874d50070557eb98bdc6a3095ef4769af583dd2

References

Bugs