PT-2021-7418 · Unknown+5 · Graphicsmagick+5

Patchkey

Published

2021-01-21

Updated

2025-08-12

CVE-2022-1270

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions GraphicsMagick (affected versions not specified)

Description The issue is related to a heap buffer overflow when parsing MIFF, which can be exploited to impact the confidentiality, integrity, and availability of protected information. This is due to errors in authorization within the GraphicsMagick component.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Buffer Overflow

Memory Corruption

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119CWE-787CWE-285

Related Identifiers

BDU:2022-06084

CVE-2022-1270

DLA-3200-1

DSA-5288-1

MGASA-2022-0446

OESA-2022-1760

OPENSUSE-SU-2022_1274-1

OPENSUSE-SU-2024:11996-1

SUSE-SU-2022:1274-1

SUSE-SU-2022:1885-1

SUSE-SU-2022_1885-1

USN-5974-1

Affected Products

Astra Linux

Graphicsmagick

Linuxmint

Red Os

Suse

Ubuntu

PT-2021-7418 · Unknown+5 · Graphicsmagick+5

CVE-2022-1270

Weakness Enumeration

Related Identifiers

Affected Products

References · 60