Home

CVE-2018-16642

Description

The function InsertRow in coders/cut.c in ImageMagick 7.0.7-37 allows remote attackers to cause a denial of service via a crafted image file due to an out-of-bounds write.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.307

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in Imagemagic (x64) 7.0.7Windows
Multiple Vulnerabilities are affected in Imagemagic 7.0.7Windows
Multiple Vulnerabilities are affected in ImageMagick 7.0.7Windows
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) ImageMagick-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) ImageMagick-debuginfo-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) ImageMagick-debugsource-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagick++-6_Q16-3-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagick++-6_Q16-3-debuginfo-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickCore-6_Q16-1-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickCore-6_Q16-1-32bit-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickCore-6_Q16-1-debuginfo-32bit-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickWand-6_Q16-1-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3095-1(SUSE Linux Enterprise Desktop 12-SP3 ) libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.79.1.x86_64.rpmLinux
SUSE-SU-2018:3348-1(SUSE Linux Enterprise Server 11-SP4 ) libMagickCore1-6.4.3.6-78.74.1.i586.rpmLinux
SUSE-SU-2018:3348-1(SUSE Linux Enterprise Server 11-SP4 ) libMagickCore1-6.4.3.6-78.74.1.x86_64.rpmLinux
SUSE-SU-2018:3348-1(SUSE Linux Enterprise Server 11-SP4 ) libMagickCore1-32bit-6.4.3.6-78.74.1.x86_64.rpmLinux

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234