Lucene search
UbuntuUSN-6621-1HistoryFeb 01, 2024 - 12:00 a.m.
ImageMagick vulnerability
2024-02-0100:00:00
ubuntu.com
54
imagemagick
bmp
processing
vulnerability
ubuntu
denial of service
esm
22.04
20.04
18.04
16.04
14.04
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0
Percentile
5.1%
Releases
- Ubuntu 22.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 18.04 ESM
- Ubuntu 16.04 ESM
- Ubuntu 14.04 ESM
Packages
- imagemagick - Image manipulation programs and library
Details
It was discovered that ImageMagick incorrectly handled certain values when
processing BMP files. An attacker could exploit this to cause a denial of
service.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 22.04 | noarch | imagemagick | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm3 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6-common | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6-doc | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6.q16 | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6.q16-dbgsym | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6.q16hdri | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-6.q16hdri-dbgsym | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-common | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
| Ubuntu | 22.04 | noarch | imagemagick-doc | < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5 | UNKNOWN |
References
Related
nessus
nessus
Ubuntu 16.04 ESM / 18.04 ESM / 20.04 ESM / 22.04 ESM : ImageMagick vulnerability (USN-6621-1)
2024-02-01 00:00:00
Photon OS 3.0: Imagemagick PHSA-2023-3.0-0697
2024-07-27 00:00:00
vulnrichment
vulnrichment
CVE-2023-5341 Imagemagick: heap use-after-free in coders/bmp.c
2023-11-19 09:20:12
cvelist
cvelist
CVE-2023-5341 Imagemagick: heap use-after-free in coders/bmp.c
2023-11-19 09:20:12
veracode
veracode
Use After Free
2023-11-07 05:37:47
cgr
cgr
CVE-2023-5341 vulnerabilities
2024-05-19 03:07:16
prion
prion
Heap overflow
2023-11-19 10:15:00
redhatcve
redhatcve
CVE-2023-5341
2023-10-04 11:25:00
osv
osv
imagemagick vulnerability
2024-02-01 17:45:01
ImageMagick-7.1.1.19-1.1 on GA media
2024-06-15 00:00:00
CVE-2023-5341
2023-11-19 10:15:49
openvas
openvas
openSUSE: Security Advisory for ImageMagick (SUSE-SU-2023:4008-1)
2024-03-04 00:00:00
SUSE: Security Advisory (SUSE-SU-2023:4049-1)
2023-10-12 00:00:00
Ubuntu: Security Advisory (USN-6621-1)
2024-02-02 00:00:00
cve
cve
CVE-2023-5341
2023-11-19 10:15:49
nvd
nvd
CVE-2023-5341
2023-11-19 10:15:49
cloudfoundry
cloudfoundry
USN-6621-1: ImageMagick vulnerability | Cloud Foundry
2024-09-05 00:00:00
wolfi
wolfi
CVE-2023-5341 vulnerabilities
2024-09-28 21:12:41
amazon
amazon
Medium: ImageMagick
2023-10-12 15:08:00
Medium: ImageMagick
2023-10-12 15:48:00
debiancve
debiancve
CVE-2023-5341
2023-11-19 10:15:49
alpinelinux
alpinelinux
CVE-2023-5341
2023-11-19 10:15:49
ubuntucve
ubuntucve
CVE-2023-5341
2023-11-19 00:00:00
redos
redos
ROS-20240409-03
2024-04-09 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: ImageMagick-7.1.1.26-2.fc39
2024-01-23 00:59:10
[SECURITY] Fedora 38 Update: ImageMagick-7.1.1.26-2.fc38
2024-01-24 01:33:26
photon
photon
Moderate Photon OS Security Update - PHSA-2023-4.0-0524
2023-12-07 00:00:00
Moderate Photon OS Security Update - PHSA-2023-5.0-0164
2023-12-06 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0697
2023-12-06 00:00:00
debian
debian
[SECURITY] [DLA 3737-1] imagemagick security update
2024-02-22 09:45:50
[SECURITY] [DSA 5628-1] imagemagick security update
2024-02-22 19:05:16
gentoo
gentoo
ImageMagick: Multiple Vulnerabilities
2024-05-04 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
CVSS3
6.2
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
AI Score
5.8
Confidence
High
EPSS
0
Percentile
5.1%
Related for USN-6621-1