[Bugs] [Bug 13243] New: imagemagick 7.1.0.30 CVEs found

Пн Май 1 20:50:55 MSK 2023

https://bugzilla.rosalinux.ru/show_bug.cgi?id=13243

          Platform: ---
            Bug ID: 13243
           Summary: imagemagick 7.1.0.30 CVEs found
    Classification: ROSA-based products
           Product: Certified ROSA distros
           Version: Chrome
          Hardware: All
               URL: CVE-2022-1114, CVE-2022-1115, CVE-2022-32545,
                    CVE-2022-32546, CVE-2023-1289,
                OS: Linux
            Status: CONFIRMED
          Severity: normal
          Priority: Normal
         Component: System (kernel, glibc, systemd, bash, PAM...)
          Assignee: bugs на lists.rosalinux.ru
          Reporter: y.tumanov на rosalinux.ru
        QA Contact: bugs на lists.rosalinux.ru
  Target Milestone: ---
             Group: ROSA-plus-NTCIT
             Flags: secteam_verified?

Please patch CVEs for package imagemagick version 7.1.0.30  
INFO (CVEs are): imagemagick 7.1.0.30 cves found
CVE-2022-1114
Desc: A heap-use-after-free flaw was found in ImageMagick's RelinquishDCMInfo()
function of dcm.c file. This vulnerability is triggered when an attacker passes
a specially crafted DICOM image file to ImageMagick for conversion, potentially
leading to information disclosure and a denial of service.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-1114
Severity: HIGH
CVE-2022-1115
Desc: A heap-buffer-overflow flaw was found in ImageMagick’s PushShortPixel()
function of quantum-private.h file. This vulnerability is triggered when an
attacker passes a specially crafted TIFF image file to ImageMagick for
conversion, potentially leading to a denial of service.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-1115
Severity: MEDIUM
CVE-2022-32545
Desc: A vulnerability was found in ImageMagick, causing an outside the range of
representable values of type 'unsigned char' at coders/psd.c, when crafted or
untrusted input is processed. This leads to a negative impact to application
availability or other problems related to undefined behavior.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-32545
Severity: HIGH
CVE-2022-32546
Desc: A vulnerability was found in ImageMagick, causing an outside the range of
representable values of type 'unsigned long' at coders/pcl.c, when crafted or
untrusted input is processed. This leads to a negative impact to application
availability or other problems related to undefined behavior.
Link: https://nvd.nist.gov/vuln/detail/CVE-2022-32546
Severity: HIGH
CVE-2023-1289
Desc: A vulnerability was discovered in ImageMagick where a specially created
SVG file loads itself and causes a segmentation fault. This flaw allows a
remote attacker to pass a specially crafted SVG file that leads to a
segmentation fault, generating many trash files in "/tmp," resulting in a
denial of service. When ImageMagick crashes, it generates a lot of trash files.
These trash files can be large if the SVG file contains many render actions. In
a denial of service attack, if a remote attacker uploads an SVG file of size t,
ImageMagick generates files of size 103*t. If an attacker uploads a 100M SVG,
the server will generate about 10G.
Link: https://nvd.nist.gov/vuln/detail/CVE-2023-1289
Severity: MEDIUM

-- 
You are receiving this mail because:
You are the QA Contact for the bug.
You are the assignee for the bug.
----------- следущая часть -----------
Вложение в формате HTML было извлечено&hellip;
URL: <http://lists.rosalinux.ru/pipermail/bugs/attachments/20230501/bd639e76/attachment-0001.html>