CVE-2012-3438 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Graphicsmagick

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents5 sources

Severity

4.3MEDIUMNVD

EPSS

1.1%

top 21.59%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Graphicsmagick Debian Graphicsmagick

Timeline

PublishedAug 7

Latest updateMay 17

Description

The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does not use the proper variable type for the allocation size, which might allow remote attackers to cause a denial of service (crash) via a crafted PNG file that triggers incorrect memory allocation.

CVSS vector

AV:N/AC:M/C:N/I:N/A:PExploitability: 8.6 | Impact: 2.9

Affected Packages3 packages

▶debiandebian/graphicsmagick< graphicsmagick 1.3.16-1.1 (bookworm)

▶Debiangraphicsmagick/graphicsmagick< 1.3.16-1.1+3

▶NVDgraphicsmagick/graphicsmagick1.3.16

Patches

Patch: graphicsmagick.hg.sourceforge.net ↗Patch: bugzilla.redhat.com ↗Patch: graphicsmagick.hg.sourceforge.net ↗

🔴Vulnerability Details

GHSA

GHSA-9cj3-p33g-x9hg: The Magick_png_malloc function in coders/png↗2022-05-17

▶

OSV

CVE-2012-3438: The Magick_png_malloc function in coders/png↗2012-08-07

▶

📋Vendor Advisories

Debian

CVE-2012-3438: graphicsmagick - The Magick_png_malloc function in coders/png.c in GraphicsMagick 6.7.8-6 does no...↗2012

▶

💬Community

Bugzilla

CVE-2012-3438 GraphicsMagick: png_IM_malloc() size argument [fedora-all]↗2012-07-28

▶

Bugzilla

CVE-2012-3438 GraphicsMagick: png_IM_malloc() size argument↗2012-07-28

▶

Bugzilla

CVE-2012-3438 GraphicsMagick: png_IM_malloc() size argument [epel-all]↗2012-07-28

▶