CVE-2020-25664

MEDIUM Year: 2020
CVSS v3 Score
6.1
Medium
CVSS v2 Score
5.8
Medium
Weakness Type
CWE-122
View all →

Vulnerability Description

In WriteOnePNGImage() of the PNG coder at coders/png.c, an improper call to AcquireVirtualMemory() and memset() allows for an out-of-bounds write later when PopShortPixel() from MagickCore/quantum-private.h is called. The patch fixes the calls by adding 256 to rowbytes. An attacker who is able to supply a specially crafted image could affect availability with a low impact to data integrity. This flaw affects ImageMagick versions prior to 6.9.10-68 and 7.0.8-68.

Related Vulnerabilities

CVE-2022-0359

MEDIUM
CVSS:6.1(Medium)

Heap-based Buffer Overflow in GitHub repository vim/vim prior to 8.2.

CWE-1222022

CVE-2022-0392

MEDIUM
CVSS:6.1(Medium)

Heap-based Buffer Overflow in GitHub repository vim prior to 8.2.

CWE-1222022

CVE-2022-1619

MEDIUM
CVSS:6.1(Medium)

Heap-based Buffer Overflow in function cmdline_erase_chars in GitHub repository vim/vim prior to 8.2.4899. This vulnerabilities are capable of crashing software, modify memory, and possible remote exe...

CWE-1222022

CVE-2020-14310

MEDIUM
CVSS:6.0(Medium)

There is an issue on grub2 before version 2.06 at function read_section_as_string(). It expects a font name to be at max UINT32_MAX - 1 length in bytes but it doesn't verify it before proceed with buf...

CWE-1222020

CVE-2020-14311

MEDIUM
CVSS:6.0(Medium)

There is an issue with grub2 before version 2.06 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32_MAX causes an arithmetic overflow leadi...

CWE-1222020

CVE-2020-1711

MEDIUM
CVSS:6.0(Medium)

An out-of-bounds heap buffer access flaw was found in the way the iSCSI Block driver in QEMU versions 2.12.0 before 4.2.1 handled a response coming from an iSCSI server while checking the status of a ...

CWE-1222020