ImageMagick 7.0.8-50 Q16 has a heap-based buffer over-read in MagickCore/composite.c in CompositeImage.
References
Link | Resource |
---|---|
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.html | Third Party Advisory |
https://github.com/ImageMagick/ImageMagick/commit/d29148fae06c01ef215940e084cf41853c117bab | Patch |
https://github.com/ImageMagick/ImageMagick/issues/1603 | Exploit Issue Tracking Patch Third Party Advisory |
Configurations
History
02 Mar 2023, 15:56
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:o:opensuse:leap:15.0:*:*:*:*:*:*:* cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* |
|
References | (SUSE) http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.html - Third Party Advisory |
Information
Published : 2019-07-05 01:15
Updated : 2024-02-04 20:20
NVD link : CVE-2019-13303
Mitre link : CVE-2019-13303
CVE.ORG link : CVE-2019-13303
JSON object : View
Products Affected
imagemagick
- imagemagick
opensuse
- leap
CWE
CWE-125
Out-of-bounds Read