Updated: 2023-03-13 05:04:19.324106
Description:
An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to GetPixelIndex() could result in values outside the range of representable for the 'unsigned char'. When ImageMagick processes a crafted pdf file, this could lead to an undefined behaviour or a crash.
| Links | NIST | CIRCL | RHEL | Ubuntu |
| Severity | Score | |
|---|---|---|
| CVSS Version 2.x | 0 | |
| CVSS Version 3.x | MEDIUM | 5.5 |
| OS name | Project name | Version | Score | Severity | Status | Errata | Last updated |
|---|---|---|---|---|---|---|---|
| Ubuntu 16.04 ELS | imagemagick | 6.8.9.9-7 | 5.5 | MEDIUM | Released | CLSA-2022:1670518357 | 2022-12-08 13:04:34 |
| Ubuntu 18.04 ELS | imagemagick | 6.9.7.4 | 5.5 | MEDIUM | Ignored | 2023-03-13 05:04:19 |
Will not fix: low score