Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A heap-based buffer overflow issue was discovered in ImageMagick's ImportMultiSpectralQuantum() function in MagickCore/quantum-import.c. An attacker could pass specially crafted file to convert, triggering an out-of-bounds read error, allowing an application to crash, resulting in a denial of service.
CVSS Information
N/A
Vulnerability Type
堆缓冲区溢出
Vulnerability Title
ImageMagick 缓冲区错误漏洞
Vulnerability Description
ImageMagick是美国ImageMagick公司的一套开源的图像处理软件。该软件可读取、转换或写入多种格式的图片。 ImageMagick 7.1.1-6之前版本存在安全漏洞,该漏洞源于存在基于堆的缓冲区溢出问题,攻击者可以通过特制文件进行转换触发越界读取错误,使应用程序崩溃从而导致拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A