Lucene search

PRIOn knowledge basePRION:CVE-2021-20309

HistoryMay 11, 2021 - 11:15 p.m.

Design/Logic Flaw

2021-05-1123:15:00

PRIOn knowledge base

www.prio-n.com

6.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

67.9%

JSON

A flaw was found in ImageMagick in versions before 7.0.11 and before 6.9.12, where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger undefined behavior via a crafted image file submitted to an application using ImageMagick. The highest threat from this vulnerability is to system availability.

CPENameOperatorVersion
debian_linuxeq9.0
imagemagicklt6.9.12
imagemagickeq>= 7.0.00 AND < 7.0.110

Name	Operator	Version
debian_linux	eq	9.0
imagemagick	lt	6.9.12
imagemagick	eq	>= 7.0.00 AND < 7.0.110

References

bugzilla.redhat.com/show_bug.cgi?id=1946722

lists.debian.org/debian-lts-announce/2021/06/msg00000.html

lists.debian.org/debian-lts-announce/2023/05/msg00020.html