A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of service.
References
Configurations
History
07 Nov 2023, 04:05
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
Information
Published : 2023-04-12 22:15
Updated : 2024-02-28 20:13
NVD link : CVE-2023-1906
Mitre link : CVE-2023-1906
CVE.ORG link : CVE-2023-1906
JSON object : View
Products Affected
fedoraproject
- extra_packages_for_enterprise_linux
- fedora
imagemagick
- imagemagick