CVE-2019-10131Off-by-one Error in Imagemagick

CWE-193Off-by-one ErrorCWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer10 documents8 sources
Severity
7.1HIGHNVD
EPSS
0.1%
top 66.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
6
ImagemagickDebian ImagemagickCanonical Ubuntu Linux+3 more
Timeline
PublishedApr 30
Latest updateSep 13

Description

An off-by-one read vulnerability was discovered in ImageMagick before version 7.0.7-28 in the formatIPTCfromBuffer function in coders/meta.c. A local attacker may use this flaw to read beyond the end of the buffer or to crash the program.

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:HExploitability: 1.8 | Impact: 5.2

Affected Packages5 packages

debiandebian/imagemagick< imagemagick 8:6.9.10.2+dfsg-2 (bookworm)
NVDimagemagick/imagemagick7.0.0-07.0.7-28+1
Debianimagemagick/imagemagick< 8:6.9.10.2+dfsg-2+3
CVEListV5imagemagick/imagemagickfixed in 7.0.7-28
NVDopensuse/leap42.3

Also affects: Debian Linux 9.0, Ubuntu Linux 16.04, 18.04, 18.10, 19.04, Enterprise Linux 7.0

Patches

Patch: bugzilla.redhat.comPatch: github.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

2
GHSA
GHSA-fhcf-vpm9-jphv: An off-by-one read vulnerability was discovered in ImageMagick before version 72022-05-24
OSV
CVE-2019-10131: An off-by-one read vulnerability was discovered in ImageMagick before version 72019-04-30

📋Vendor Advisories

4
Ubuntu
ImageMagick vulnerabilities2024-09-04
Ubuntu
ImageMagick vulnerabilities2019-06-25
Red Hat
ImageMagick: off-by-one read in formatIPTCfromBuffer function in coders/meta.c2019-04-30
Debian
CVE-2019-10131: imagemagick - An off-by-one read vulnerability was discovered in ImageMagick before version 7....2019

📄Research Papers

1
arXiv
LLM-Enhanced Software Patch Localization2024-09-13

💬Community

2
Bugzilla
CVE-2019-10131 ImageMagick: off-by-one read in formatIPTCfromBuffer function in coders/meta.c [fedora-all]2019-05-10
Bugzilla
CVE-2019-10131 ImageMagick: off-by-one read in formatIPTCfromBuffer function in coders/meta.c2019-04-30