Fluid Attacks Database

Description

A heap buffer overflow issue was found in ImageMagick. When an application processes a malformed TIFF file, it could lead to undefined behavior or a crash causing a denial of service.

Mitigation

Update Impact

Minimal update. May introduce new vulnerabilities or breaking changes.

Ecosystem	Package	Affected version	Patched versions
debian 11	imagemagick	=8:6.9.11.60+dfsg-1.3 \|\| =8:6.9.11.60+dfsg-1.3+deb11u1 \|\| =8:6.9.11.60+dfsg-1.3+deb11u2 \|\| >=0 <8:6.9.11.60+dfsg-1.3+deb11u3	8:6.9.11.60+dfsg-1.3+deb11u3
alpine v3.18	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0
alpine v3.19	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0
alpine v3.20	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0
alpine v3.21	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0
alpine v3.22	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0
debian 12	imagemagick	=8:6.9.11.60+dfsg-1.6 \|\| >=0 <8:6.9.11.60+dfsg-1.6+deb12u1	8:6.9.11.60+dfsg-1.6+deb12u1
debian 13	imagemagick	>=0 <8:6.9.12.98+dfsg1-2	8:6.9.12.98+dfsg1-2
debian 14	imagemagick	>=0 <8:6.9.12.98+dfsg1-2	8:6.9.12.98+dfsg1-2
alpine v3.23	tiff	=3.8.2-r0 \|\| =3.8.2-r1 \|\| =3.8.2-r2 \|\| =3.8.2-r3 \|\| =3.8.2-r4 \|\| =3.9.5-r0 \|\| =3.9.5-r1 \|\| =4.0.1-r0 \|\| =4.0.10-r0 \|\| =4.0.10-r1 \|\| =4.0.10-r2 \|\| =4.0.2-r0 \|\| =4.0.2-r1 \|\| =4.0.3-r0 \|\| =4.0.3-r1 \|\| =4.0.3-r2 \|\| =4.0.3-r3 \|\| =4.0.6-r0 \|\| =4.0.6-r1 \|\| =4.0.6-r2 \|\| =4.0.6-r3 \|\| =4.0.7-r0 \|\| =4.0.7-r1 \|\| =4.0.7-r2 \|\| =4.0.7-r3 \|\| =4.0.8-r0 \|\| =4.0.8-r1 \|\| =4.0.9-r0 \|\| =4.0.9-r1 \|\| =4.0.9-r2 \|\| =4.0.9-r3 \|\| =4.0.9-r4 \|\| =4.0.9-r5 \|\| =4.0.9-r6 \|\| =4.0.9-r7 \|\| =4.0.9-r8 \|\| =4.1.0-r0 \|\| =4.1.0-r1 \|\| =4.1.0-r2 \|\| =4.2.0-r0 \|\| =4.2.0-r1 \|\| =4.3.0-r0 \|\| =4.3.0-r1 \|\| =4.4.0-r0 \|\| =4.4.0-r1 \|\| >=0 <4.5.0-r0	4.5.0-r0

Aliases

1. CVE-2022-32132. NVD-2022-32133. OSV-DEBIAN-2022-32134. OSV-2022-32135. OSV-ALPINE-2022-32136. SECURITY-TRACKER-CVE-2022-32137. SECURITY-CVE-2022-3213

Does your application use this vulnerable software?

During the free trial, our tools assess your application, identify vulnerabilities, and provide recommendations for their remediation.