Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In RestoreMSCWarning() of /coders/pdf.c there are several areas where calls to GetPixelIndex() could result in values outside the range of representable for the unsigned char type. The patch casts the return value of GetPixelIndex() to ssize_t type to avoid this bug. This undefined behavior could be triggered when ImageMagick processes a crafted pdf file. Red Hat Product Security marked this as Low severity because although it could potentially lead to an impact to application availability, no specific impact was demonstrated in this case. This flaw affects ImageMagick versions prior to 7.0.9-0.
CVSS Information
N/A
Vulnerability Type
整数溢出或超界折返
Vulnerability Title
ImageMagick Studio ImageMagick 输入验证错误漏洞
Vulnerability Description
Imagemagick Studio ImageMagick是美国ImageMagick Studio(Imagemagick Studio)公司的一套开源的图像处理软件。该软件可读取、转换或写入多种格式的图片。 ImageMagick 7.0.9-0之前版本存在安全漏洞,该漏洞源于/coders/pdf.c的RestoreMSCWarning()中,对GetPixelIndex()的调用可能导致的值超出了unsigned char类型的可表示范围。
CVSS Information
N/A
Vulnerability Type
N/A