Lucene search
Veracode Vulnerability DatabaseVERACODE:29364HistoryFeb 11, 2021 - 11:13 p.m.
Arbitrary Code Execution
2021-02-1123:13:14
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
15
graphicsmagick
arbitrary code execution
integer overflow
heap-based buffer overflow
huffmandecodeimage
magick/compress.c
host os
.
EPSS
0.002
Percentile
59.8%
GraphicsMagick is vulnerable to arbitrary code execution. An integer overflow and heap-based buffer overflow in HuffmanDecodeImage in magick/compress.c allows an attacker to execute arbitrary code on the host OS.
References
lists.opensuse.org/opensuse-security-announce/2020-03/msg00049.html
lists.opensuse.org/opensuse-security-announce/2020-03/msg00051.html
lists.debian.org/debian-lts-announce/2020/04/msg00007.html
secdb.alpinelinux.org/v3.11/community.yaml
secdb.alpinelinux.org/v3.12/community.yaml
secdb.alpinelinux.org/v3.13/community.yaml
sourceforge.net/p/graphicsmagick/code/ci/5b4dd7c6674140a115ec9424c8d19c6a458fac3e/
www.debian.org/security/2020/dsa-4675
Related
prion
prion
Integer overflow
2020-03-24 16:15:00
alpinelinux
alpinelinux
CVE-2020-10938
2020-03-24 16:15:12
openvas
openvas
GraphicsMagick < 1.3.35 Heap-Based Buffer Overflow Vulnerability - Windows
2020-04-22 00:00:00
GraphicsMagick < 1.3.35 Heap-Based Buffer Overflow Vulnerability - Linux
2020-04-22 00:00:00
Debian: Security Advisory (DLA-2173-1)
2020-04-15 00:00:00
hackerone
hackerone
osv
osv
graphicsmagick - security update
2020-04-14 00:00:00
graphicsmagick - security update
2020-05-05 00:00:00
graphicsmagick vulnerabilities
2022-08-30 16:03:50
ubuntucve
ubuntucve
CVE-2020-10938
2020-03-24 00:00:00
nvd
nvd
CVE-2020-10938
2020-03-24 16:15:12
debiancve
debiancve
CVE-2020-10938
2020-03-24 16:15:12
redhatcve
redhatcve
CVE-2020-10938
2022-05-21 00:24:16
cve
cve
CVE-2020-10938
2020-03-24 16:15:12
debian
debian
[SECURITY] [DLA 2173-1] graphicsmagick security update
2020-04-15 02:29:09
[SECURITY] [DSA 4675-1] graphicsmagick security update
2020-05-05 20:50:04
[SECURITY] [DSA 4675-1] graphicsmagick security update
2020-05-05 20:50:04
nessus
nessus
Debian DLA-2173-1 : graphicsmagick security update
2020-04-15 00:00:00
openSUSE Security Update : GraphicsMagick (openSUSE-2020-416)
2020-03-31 00:00:00
Debian DSA-4675-1 : graphicsmagick - security update
2020-05-07 00:00:00
cvelist
cvelist
CVE-2020-10938
2020-03-24 15:28:05
suse
suse
Security update for GraphicsMagick (moderate)
2020-03-31 00:00:00
Security update for GraphicsMagick (moderate)
2020-03-31 00:00:00
ubuntu
ubuntu
GraphicsMagick vulnerabilities
2022-08-30 00:00:00