Multiple vulnerabilities in ImageMagick



Published: 2022-05-09
Risk High
Patch available YES
Number of vulnerabilities 2
CVE-ID CVE-2022-1114
CVE-2022-28463
CWE-ID CWE-416
CWE-119
Exploitation vector Network
Public exploit N/A
Vulnerable software
Subscribe
ImageMagick
Client/Desktop applications / Multimedia software

Vendor ImageMagick.org

Security Bulletin

This security bulletin contains information about 2 vulnerabilities.

1) Use-after-free

EUVDB-ID: #VU62853

Risk: Medium

CVSSv3.1:

CVE-ID: CVE-2022-1114

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a remote attacker can gain access to sensitive information or perform a denial of service attack.

The vulnerability exists due to a use-after-free error in RelinquishDCMInfo() function of dcm.c file. A remote attacker can pass a specially crafted DICOM image file to the application and gain access to sensitive information or perform a denial of service attack.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

ImageMagick: 7.1.0-0 - 7.1.0-27, 6.9.12-0 - 6.9.12-42, 6.9.11-0 - 6.9.11-62, 6.9.10-0 - 6.9.10-97, 6.9.9-0 - 6.9.9-51, 6.9.8-0 - 6.9.8-10, 6.9.7 - 6.9.7-10, 6.9.6-0 - 6.9.6.6, 6.9.5-0 - 6.9.5-10, 6.9.4-0 - 6.9.4-10, 6.9.2-0 - 6.9.2-10, 6.9.1-0 - 6.9.1-10, 6.9.0-0 - 6.9.0-10, 6.9.3-0 - 6.9.3-10


CPE2.3 External links

http://bugzilla.redhat.com/show_bug.cgi?id=2064538

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?

2) Buffer overflow

EUVDB-ID: #VU62851

Risk: High

CVSSv3.1:

CVE-ID: CVE-2022-28463

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a remote attacker to execute arbitrary code on the target system.

The vulnerability exists due to a boundary error when processing Image files. A remote attacker can pass specially crafted data to the application, trigger memory corruption and execute arbitrary code on the target system.

Successful exploitation of this vulnerability may result in complete compromise of vulnerable system.

Mitigation

Install updates from vendor's website.

Vulnerable software versions

ImageMagick: 7.1.0-0 - 7.1.0-28, 6.9.12-0 - 6.9.12-43, 6.9.11-0 - 6.9.11-62, 6.9.10-0 - 6.9.10-97, 6.9.9-0 - 6.9.9-51, 6.9.8-0 - 6.9.8-10, 6.9.7 - 6.9.7-10, 6.9.6-0 - 6.9.6.6, 6.9.5-0 - 6.9.5-10, 6.9.4-0 - 6.9.4-10, 6.9.2-0 - 6.9.2-10, 6.9.1-0 - 6.9.1-10, 6.9.0-0 - 6.9.0-10, 6.9.3-0 - 6.9.3-10


CPE2.3 External links

http://github.com/ImageMagick/ImageMagick6/commit/e6ea5876e0228165ee3abc6e959aa174cee06680
http://github.com/ImageMagick/ImageMagick/issues/4988
http://github.com/ImageMagick/ImageMagick/commit/ca3654ebf7a439dc736f56f083c9aa98e4464b7f

Q & A

Can this vulnerability be exploited remotely?

Is there known malware, which exploits this vulnerability?



###SIDEBAR###