Lucene search
Veracode Vulnerability DatabaseVERACODE:37486HistoryOct 11, 2022 - 5:45 a.m.
Denial Of Service (DoS)
2022-10-1105:45:22
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
14
imagemagick
heap buffer overflow
denial of service
EPSS
0.001
Percentile
44.8%
imagemagick is vulnerable to denial of service. The vulnerability exists in ReadTIFFImage function of tiff.c due to a heap buffer overflow which allows an attacker to cause an application crash via a malicious input.
References
access.redhat.com/security/cve/CVE-2022-1115
bugzilla.redhat.com/show_bug.cgi?id=2067022
github.com/ImageMagick/ImageMagick/commit/c8718305f120293d8bf13724f12eed885d830b09
github.com/ImageMagick/ImageMagick/issues/4974
github.com/ImageMagick/ImageMagick6/commit/1f860f52bd8d58737ad883072203391096b30b51
secdb.alpinelinux.org/edge/community.yaml
secdb.alpinelinux.org/v3.16/community.yaml
Related
photon
photon
Moderate Photon OS Security Update - PHSA-2022-0247
2022-09-17 00:00:00
Moderate Photon OS Security Update - PHSA-2022-4.0-0247
2022-09-17 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0455
2022-09-20 00:00:00
nessus
nessus
Photon OS 3.0: Imagemagick PHSA-2022-3.0-0455
2024-07-24 00:00:00
Photon OS 4.0: Imagemagick PHSA-2022-4.0-0247
2024-07-23 00:00:00
Debian dsa-5628 : imagemagick - security update
2024-02-22 00:00:00
cvelist
cvelist
CVE-2022-1115
2022-08-29 14:03:06
osv
osv
CVE-2022-1115
2022-08-29 15:15:10
imagemagick - security update
2024-02-22 00:00:00
ImageMagick-7.1.1.17-1.1 on GA media
2024-06-15 00:00:00
redhatcve
redhatcve
CVE-2022-1115
2022-03-28 10:50:09
prion
prion
Heap overflow
2022-08-29 15:15:00
ubuntucve
ubuntucve
CVE-2022-1115
2022-08-29 00:00:00
alpinelinux
alpinelinux
CVE-2022-1115
2022-08-29 15:15:10
debiancve
debiancve
CVE-2022-1115
2022-08-29 15:15:10
nvd
nvd
CVE-2022-1115
2022-08-29 15:15:10
cve
cve
CVE-2022-1115
2022-08-29 15:15:10
redos
redos
ROS-20240611-08
2024-06-11 00:00:00
debian
debian
[SECURITY] [DSA 5628-1] imagemagick security update
2024-02-22 19:05:16
openvas
openvas
Debian: Security Advisory (DSA-5628-1)
2024-02-23 00:00:00
gentoo
gentoo
ImageMagick: Multiple Vulnerabilities
2024-05-04 00:00:00