Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ImageMagick Undefined Behavior (function-type-mismatch) in CloneSplayTree
Vulnerability Description
ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 6.9.13-27 and 7.1.2-1, there is undefined behavior (function-type-mismatch) in splay tree cloning callback. This results in a deterministic abort under UBSan (DoS in sanitizer builds), with no crash in a non-sanitized build. This issue has been patched in versions 6.9.13-27 and 7.1.2-1.
CVSS Information
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:L
Vulnerability Type
依赖未定义、未指明或实现定义的行为
Vulnerability Title
ImageMagick 安全漏洞
Vulnerability Description
ImageMagick是ImageMagick开源的一套开源的图像处理软件。可读取、转换或写入多种格式的图片。 ImageMagick 6.9.13-27和7.1.2-1之前版本存在安全漏洞,该漏洞源于splay树克隆回调中的未定义行为,可能导致确定性中止。
CVSS Information
N/A
Vulnerability Type
N/A