Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
osvGoogleOSV:CVE-2020-27755
HistoryDec 08, 2020 - 10:15 p.m.

CVE-2020-27755

2020-12-0822:15:18
Google
osv.dev
9
cve-2020-27755
setimageextent
imagemagick
memory leak
application reliability
denial of service
patch
image depth size
invalid size
crafted input file
vulnerability
software security

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON

in SetImageExtent() of /MagickCore/image.c, an incorrect image depth size can cause a memory leak because the code which checks for the proper image depth size does not reset the size in the event there is an invalid size. The patch resets the depth to a proper size before throwing an exception. The memory leak can be triggered by a crafted input file that is processed by ImageMagick and could cause an impact to application reliability, such as denial of service. This flaw affects ImageMagick versions prior to 7.0.9-0.

Related

nvd 1
cve 1
ubuntucve 1
veracode 1
prion 1
debiancve 1
redhatcve 1
cvelist 1
nessus 13
openvas 10
osv 2
cloudfoundry 1
suse 2
ubuntu 1
nvd
nvd
CVE-2020-27755
2020-12-08 22:15:18
cve
cve
CVE-2020-27755
2020-12-08 22:15:18
ubuntucve
ubuntucve
CVE-2020-27755
2020-12-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-12-06 04:00:34
prion
prion
Code injection
2020-12-08 22:15:00
debiancve
debiancve
CVE-2020-27755
2020-12-08 22:15:18
redhatcve
redhatcve
CVE-2020-27755
2020-11-24 19:23:39
cvelist
cvelist
CVE-2020-27755
2020-12-08 21:57:25
nessus
nessus
SUSE SLES11 Security Update : ImageMagick (SUSE-SU-2021:14598-1)
2021-06-10 00:00:00
EulerOS 2.0 SP5 : ImageMagick (EulerOS-SA-2022-1536)
2022-04-25 00:00:00
SUSE SLED15 / SLES15 Security Update : ImageMagick (SUSE-SU-2021:0153-1)
2021-01-20 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:14598-1)
2021-06-09 00:00:00
Huawei EulerOS: Security Advisory for ImageMagick (EulerOS-SA-2022-1536)
2022-04-25 00:00:00
Ubuntu: Security Advisory (USN-4988-1)
2021-06-16 00:00:00
osv
osv
ImageMagick-7.1.0.9-1.1 on GA media
2024-06-15 00:00:00
imagemagick vulnerabilities
2021-06-15 11:11:56
cloudfoundry
cloudfoundry
USN-4988-1: ImageMagick vulnerabilities | Cloud Foundry
2021-07-08 00:00:00
suse
suse
Security update for ImageMagick (moderate)
2021-01-22 00:00:00
Security update for ImageMagick (moderate)
2021-01-24 00:00:00
ubuntu
ubuntu
ImageMagick vulnerabilities
2021-06-15 00:00:00

AI Score

6.4

Confidence

High

EPSS

0.001

Percentile

23.5%

JSON
Related for OSV:CVE-2020-27755
nvd1cve1ubuntucve1veracode1prion1debiancve1redhatcve1cvelist1nessus13openvas10osv2cloudfoundry1suse2ubuntu1