CVE-2020-27769

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions ImageMagick versions prior to 7.0.9-0

Description The issue is related to an integer overflow in the MagickCore/quantize.c component of the ImageMagick console graphic editor. This allows a remote attacker to cause a denial of service. The problem arises when values are outside the range of representable values of type 'float' at MagickCore/quantize.c.

Recommendations For versions prior to 7.0.9-0, update to version 7.0.9-0 or later to resolve the issue.

Exploit

Fix

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

ALT-PU-2023-5309

BDU:2021-03408

CVE-2020-27769

DLA-2602-1

DLA-3357-1

DLA-3357-2

OESA-2021-1198

OPENSUSE-SU-2021:0136-1

OPENSUSE-SU-2021:0148-1

OPENSUSE-SU-2021_0136-1

OPENSUSE-SU-2021_0148-1

SUSE-SU-2021:0153-1

SUSE-SU-2021:0156-1

SUSE-SU-2021:0199-1

SUSE-SU-2021:14598-1

SUSE-SU-2021_14598-1

USN-4988-1

USN-7068-1

Affected Products

Astra Linux

Imagemagick

Linuxmint

Suse

Ubuntu

CVE-2020-27769

Weakness Enumeration

Related Identifiers

Affected Products

References · 384