Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2023-3428HistoryOct 04, 2023 - 7:15 p.m.
CVE-2023-3428
2023-10-0419:15:10
Debian Security Bug Tracker
security-tracker.debian.org
17
code vulnerability
imagemagick
application crash
denial of service
unix
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
10.5%
A heap-based buffer overflow vulnerability was found in coders/tiff.c in ImageMagick. This issue may allow a local attacker to trick the user into opening a specially crafted file, resulting in an application crash and denial of service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | imagemagick | < 8:6.9.11.60+dfsg-1.6+deb12u1 | imagemagick_8:6.9.11.60+dfsg-1.6+deb12u1_all.deb |
| Debian | 11 | all | imagemagick | < 8:6.9.11.60+dfsg-1.3+deb11u3 | imagemagick_8:6.9.11.60+dfsg-1.3+deb11u3_all.deb |
| Debian | 10 | all | imagemagick | < 8:6.9.10.23+dfsg-2.1+deb10u1 | imagemagick_8:6.9.10.23+dfsg-2.1+deb10u1_all.deb |
| Debian | 999 | all | imagemagick | < 8:6.9.12.98+dfsg1-2 | imagemagick_8:6.9.12.98+dfsg1-2_all.deb |
| Debian | 13 | all | imagemagick | < 8:6.9.12.98+dfsg1-2 | imagemagick_8:6.9.12.98+dfsg1-2_all.deb |
Related
nessus
nessus
Amazon Linux 2 : ImageMagick (ALAS-2023-2123)
2023-07-20 00:00:00
ImageMagick 7.1.1-13 Heap-based Buffer Overflow DoS
2023-07-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2023-10-27 23:25:13
ubuntucve
ubuntucve
CVE-2023-3428
2023-06-29 00:00:00
cvelist
cvelist
CVE-2023-3428 Imagemagick: heap-buffer-overflow in coders/tiff.c
2023-10-04 18:02:23
amazon
amazon
Medium: ImageMagick
2023-07-17 17:39:00
Medium: ImageMagick
2023-07-13 23:57:00
osv
osv
CVE-2023-3428
2023-10-04 19:15:10
imagemagick - security update
2024-02-22 00:00:00
imagemagick vulnerabilities
2023-07-04 09:23:39
prion
prion
Heap overflow
2023-10-04 19:15:00
redos
redos
ROS-20231016-03
2023-10-16 00:00:00
redhatcve
redhatcve
CVE-2023-3428
2023-06-28 22:21:28
alpinelinux
alpinelinux
CVE-2023-3428
2023-10-04 19:15:10
nvd
nvd
CVE-2023-3428
2023-10-04 19:15:10
cve
cve
CVE-2023-3428
2023-10-04 19:15:10
photon
photon
Moderate Photon OS Security Update - PHSA-2023-5.0-0047
2023-07-11 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0424
2023-07-11 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0611
2023-07-12 00:00:00
mageia
mageia
Updated imagemagick packages fix security vulnerabilities
2024-03-16 01:51:55
openvas
openvas
Mageia: Security Advisory (MGASA-2024-0064)
2024-03-18 00:00:00
Debian: Security Advisory (DSA-5628-1)
2024-02-23 00:00:00
Fedora: Security Advisory for ImageMagick (FEDORA-2023-edbdccae2a)
2023-09-01 00:00:00
debian
debian
[SECURITY] [DSA 5628-1] imagemagick security update
2024-02-22 19:05:16
fedora
fedora
[SECURITY] Fedora 37 Update: ImageMagick-6.9.12.93-1.fc37
2023-08-31 01:20:29
ubuntu
ubuntu
ImageMagick vulnerabilities
2023-07-04 00:00:00
6.2 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.0004 Low
EPSS
Percentile
10.5%
Related for DEBIANCVE:CVE-2023-3428