CVE-2022-2719

In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a NULL image list. This could potentially cause a denial of service. This was fixed in upstream ImageMagick version 7.1.0-30.
References
Link Resource
https://bugzilla.redhat.com/show_bug.cgi?id=2116537 Issue Tracking Patch Third Party Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*

History

16 Aug 2022, 16:00

Type Values Removed Values Added
References (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2116537 - (MISC) https://bugzilla.redhat.com/show_bug.cgi?id=2116537 - Issue Tracking, Patch, Third Party Advisory
CWE CWE-617
CPE cpe:2.3:o:fedoraproject:fedora:36:*:*:*:*:*:*:*
cpe:2.3:a:fedoraproject:extra_packages_for_enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:a:imagemagick:imagemagick:*:*:*:*:*:*:*:*
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 5.5

10 Aug 2022, 20:15

Type Values Removed Values Added
New CVE

Information

Published : 2022-08-10 20:15

Updated : 2024-02-04 22:51


NVD link : CVE-2022-2719

Mitre link : CVE-2022-2719

CVE.ORG link : CVE-2022-2719


JSON object : View

Products Affected

imagemagick

  • imagemagick

fedoraproject

  • fedora
  • extra_packages_for_enterprise_linux
CWE
CWE-617

Reachable Assertion