Fluid Attacks Database

Description

ImageMagick: Heap Buffer Over-Write in json and yaml encoder of a single byte due to incorrect fix An incorrect fix that was applied in GHSA-5592-p365-24xh could result in a heap buffer over-write of a single byte.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
nuget	magick.net-q16-hdri-x64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-hdri-x86	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-hdri-anycpu	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-anycpu	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-hdri-openmp-arm64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-hdri-arm64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-openmp-arm64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-openmp-x64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-arm64	>=0 <14.12.0	14.12.0
nuget	magick.net-q16-x64	>=0 <14.12.0	14.12.0

1-10 of 17

Aliases

1. GHSA-jqq5-8px3-9m6m2. GHSA-5592-p365-24xh3. GCVE-GHSA-jqq5-8px3-9m6m

References

1. https://github.com/ImageMagick/ImageMagick/security/advisories/GHSA-jqq5-8px3-9m6m