Home

CVE-2018-14551

Description

The ReadMATImageV4 function in coders/mat.c in ImageMagick 7.0.8-7 uses an uninitialized variable, leading to memory corruption.

Risk Information

Base Score
9.8
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
0.262

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Imagemagic (x64) 7.0.8Windows
Multiple Vulnerabilities are affected in Imagemagic 7.0.8Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.8Windows
Image manipulation programs and library (USN-3363-2) imagemagick_6.8.9.9-7ubuntu5.13_amd64.debLinux
Image manipulation programs and library (USN-3363-2) imagemagick_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3363-2) libmagick++5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3363-2) libmagickcore5_6.7.7.10-6ubuntu3.13_i386.debLinux
Image manipulation programs and library (USN-3363-2) libmagickcore5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3363-2) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_i386.debLinux
Image manipulation programs and library (USN-3363-2) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_amd64.debLinux
Image manipulation programs and library (USN-3222-1) imagemagick_6.8.9.9-7ubuntu5.13_amd64.debLinux
Image manipulation programs and library (USN-3222-1) imagemagick_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3222-1) libmagick++5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.8.9.9-7ubuntu5.13_amd64.debLinux
Image manipulation programs and library (USN-3681-1) imagemagick_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3681-1) libmagick++5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.8.9.9-7ubuntu5.13_i386.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.8.9.9-7ubuntu5.13_amd64.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.7.7.10-6ubuntu3.13_i386.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.9.7.4+dfsg-16ubuntu6.4_i386.debLinux
Image manipulation programs and library (USN-3785-1) imagemagick_6.9.7.4+dfsg-16ubuntu6.4_amd64.debLinux
Image manipulation programs and library (USN-3785-1) libmagick++5_6.7.7.10-6ubuntu3.13_i386.debLinux
Image manipulation programs and library (USN-3785-1) libmagick++5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore5_6.7.7.10-6ubuntu3.13_i386.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore5_6.7.7.10-6ubuntu3.13_amd64.debLinux
Image manipulation programs and library (USN-3785-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu6.4_i386.debLinux
Image manipulation programs and library (USN-3785-1) libmagick++-6.q16-7_6.9.7.4+dfsg-16ubuntu6.4_amd64.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu6.4_i386.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore-6.q16-3_6.9.7.4+dfsg-16ubuntu6.4_amd64.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_i386.debLinux
Image manipulation programs and library (USN-3785-1) libmagickcore-6.q16-2_6.8.9.9-7ubuntu5.13_amd64.debLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234