CVE-2022-28463
Summary
| CVE | CVE-2022-28463 |
|---|
| State | PUBLIC |
|---|
| Assigner | [email protected] |
|---|
| Source Priority | CVE Program / NVD first with legacy fallback |
|---|
| Published | 2022-05-08 23:15:00 UTC |
|---|
| Updated | 2023-05-22 02:15:00 UTC |
|---|
| Description | ImageMagick 7.1.0-27 is vulnerable to Buffer Overflow. |
|---|
NVD Known Affected Configurations (CPE 2.3)
References
| Reference | Source | Link | Tags |
|---|
| AddressSanitizer: heap-buffer-overflow /src/imagemagick/./MagickCore/quantum-private.h:256:27 in PushLongPixel · Issue #4988 · ImageMagick/ImageMagick · GitHub |
MISC |
github.com |
|
| [SECURITY] [DLA-3007-1] imagemagick security update |
MLIST |
lists.debian.org |
|
| [SECURITY] [DLA 3429-1] imagemagick security update |
MLIST |
lists.debian.org |
|
| https://github.com/ImageMagick/ImageMagick/issues/4988 · ImageMagick/ImageMagick@ca3654e · GitHub |
MISC |
github.com |
|
| https://github.com/ImageMagick/ImageMagick/issues/4988 · ImageMagick/ImageMagick6@e6ea587 · GitHub |
MISC |
github.com |
|
| CVE Program record |
CVE.ORG |
www.cve.org |
canonical |
| NVD vulnerability detail |
NVD |
nvd.nist.gov |
canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 180928 Debian Security Update for imagemagick (DLA-3007-1)
- 181795 Debian Security Update for imagemagick (DLA 3429-1)
- 182977 Debian Security Update for imagemagick (CVE-2022-28463)
- 198815 Ubuntu Security Notification for ImageMagick Vulnerability (USN-5456-1)
- 199045 Ubuntu Security Notification for ImageMagick Vulnerabilities (USN-5736-1)
- 199524 Ubuntu Security Notification for ImageMagick Vulnerabilities (USN-6200-1)
- 354798 Amazon Linux Security Advisory for ImageMagick : ALAS2-2023-1971
- 354809 Amazon Linux Security Advisory for ImageMagick : ALAS-2023-1696
- 502533 Alpine Linux Security Update for imagemagick
- 752190 SUSE Enterprise Linux Security Update for ImageMagick (SUSE-SU-2022:1885-1)
- 753232 SUSE Enterprise Linux Security Update for ImageMagick (SUSE-SU-2022:1762-1)
- 753269 SUSE Enterprise Linux Security Update for ImageMagick (SUSE-SU-2022:2998-1)
