Main Vulnerability Database SB2021042020

SB2021042020 - SUSE update for ImageMagick

Published: April 20, 2021

Security Bulletin ID SB2021042020

CSH Severity

High

Patch available

YES

Number of vulnerabilities 4

Exploitation vector Remote access

Highest impact Code execution

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 4 vulnerabilities.

1) Division by zero (CVE-ID: CVE-2021-20309)

CWE-ID: CWE-369 - Divide By Zero

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a division by zero error in the WaveImage() function in MagickCore/visual-effects.c . A remote attacker can pass specially crafted image file to the application and crash it.

2) Division by zero (CVE-ID: CVE-2021-20311)

CWE-ID: CWE-369 - Divide By Zero

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Green

The vulnerability allows a remote attacker to perform a denial of service attack.

The vulnerability exists due to a division by zero error in the sRGBTransformImage() function in MagickCore/colorspace.c . A remote attacker can pass specially crafted image file to the application and crash it.

3) Integer overflow (CVE-ID: CVE-2021-20312)

CWE-ID: CWE-190 - Integer overflow

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to integer overflow in the WriteTHUMBNAILImage() function in coders/thumbnail.c. A remote attacker can pass specially crafted data to the application, trigger integer overflow and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

4) Information disclosure (CVE-ID: CVE-2021-20313)

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Green

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to potential cipher leak when calculating signatures in TransformSignature() function in MagickCore/signature.c. A remote attacker can gain unauthorized access to sensitive information on the system.

Remediation

Install update from vendor's website.

References

https://www.suse.com/support/update/announcement/2021/suse-su-20211276-1/

Vulnerable Software

SUSE Linux Enterprise Module for Development Tools: 15-SP2 - 15-SP3
SUSE Linux Enterprise Module for Desktop Applications: 15-SP2 - 15-SP3
ImageMagick-debuginfo: before 7.0.7.34-10.15.1
ImageMagick-debugsource: before 7.0.7.34-10.15.1
perl-PerlMagick: before 7.0.7.34-10.15.1
perl-PerlMagick-debuginfo: before 7.0.7.34-10.15.1
ImageMagick: before 7.0.7.34-10.15.1
ImageMagick-config-7-SUSE: before 7.0.7.34-10.15.1
ImageMagick-config-7-upstream: before 7.0.7.34-10.15.1
ImageMagick-devel: before 7.0.7.34-10.15.1
libMagick++-7_Q16HDRI4: before 7.0.7.34-10.15.1
libMagick++-7_Q16HDRI4-debuginfo: before 7.0.7.34-10.15.1
libMagick++-devel: before 7.0.7.34-10.15.1
libMagickCore-7_Q16HDRI6: before 7.0.7.34-10.15.1
libMagickCore-7_Q16HDRI6-debuginfo: before 7.0.7.34-10.15.1
libMagickWand-7_Q16HDRI6: before 7.0.7.34-10.15.1
libMagickWand-7_Q16HDRI6-debuginfo: before 7.0.7.34-10.15.1

SB2021042020 - SUSE update for ImageMagick

Breakdown by Severity

Description

Remediation

References

Please verify you're human