Description
ImageMagick vulnerable to stack corruption through long morphology kernel names or arrays
A stack buffer overflow exists in ImageMagick's morphology kernel parsing functions. User-controlled kernel strings exceeding a buffer are copied into fixed-size stack buffers via memcpy without bounds checking, resulting in stack corruption.
Mitigation
Minimal update. May introduce new vulnerabilities or breaking changes.
|
 debian 11 | | =8:6.9.11.60+dfsg-1.3 || =8:6.9.11.60+dfsg-1.3+deb11u1 || =8:6.9.11.60+dfsg-1.3+deb11u10 || =8:6.9.11.60+dfsg-1.3+deb11u2 || =8:6.9.11.60+dfsg-1.3+deb11u3 || =8:6.9.11.60+dfsg-1.3+deb11u4 || =8:6.9.11.60+dfsg-1.3+deb11u5 || =8:6.9.11.60+dfsg-1.3+deb11u6 || =8:6.9.11.60+dfsg-1.3+deb11u7 || =8:6.9.11.60+dfsg-1.3+deb11u8 || =8:6.9.11.60+dfsg-1.3+deb11u9 || >=0 <8:6.9.11.60+dfsg-1.3+deb11u11 | 8:6.9.11.60+dfsg-1.3+deb11u11 |
debian 13 | | =8:7.1.1.43+dfsg1-1 || =8:7.1.1.43+dfsg1-1+deb13u1 || =8:7.1.1.43+dfsg1-1+deb13u2 || =8:7.1.1.43+dfsg1-1+deb13u3 || =8:7.1.1.43+dfsg1-1+deb13u4 || =8:7.1.1.43+dfsg1-1+deb13u5 || =8:7.1.1.43+dfsg1-1+deb13u6 || >=0 <8:7.1.1.43+dfsg1-1+deb13u7 | 8:7.1.1.43+dfsg1-1+deb13u7 |
debian 14 | | =8:7.1.1.43+dfsg1-1 || =8:7.1.1.46+dfsg1-1 || =8:7.1.1.47+dfsg1-1 || =8:7.1.1.47+dfsg1-2 || =8:7.1.2.1+dfsg1-1 || =8:7.1.2.12+dfsg1-1 || =8:7.1.2.13+dfsg1-1 || =8:7.1.2.15+dfsg1-1 || =8:7.1.2.15+dfsg1-2 || =8:7.1.2.3+dfsg1-1 || =8:7.1.2.7+dfsg1-1 || =8:7.1.2.8+dfsg1-1 || >=0 <8:7.1.2.16+dfsg1-1 | 8:7.1.2.16+dfsg1-1 |
debian 12 | | =8:6.9.11.60+dfsg-1.6 || =8:6.9.11.60+dfsg-1.6+deb12u1 || =8:6.9.11.60+dfsg-1.6+deb12u2 || =8:6.9.11.60+dfsg-1.6+deb12u3 || =8:6.9.11.60+dfsg-1.6+deb12u4 || =8:6.9.11.60+dfsg-1.6+deb12u5 || =8:6.9.11.60+dfsg-1.6+deb12u6 || =8:6.9.11.60+dfsg-1.6+deb12u7 || >=0 <8:6.9.11.60+dfsg-1.6+deb12u8 | 8:6.9.11.60+dfsg-1.6+deb12u8 |
 nuget | | | 14.10.4 |
 rpm rhel6 | | - | - |
rpm rhel7 | | - | - |
nuget | | | 14.10.4 |
nuget | | | 14.10.4 |
nuget | | | 14.10.4 |
