CVE-2020-27770 — Integer Overflow or Wraparound in Imagemagick
Severity
5.5MEDIUMNVD
OSV6.5
EPSS
0.1%
top 69.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedDec 4
Latest updateOct 15
Description
Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to application availability. This could be triggered by a crafted input file that is processed by ImageMagick. This flaw affects ImageMagick versions prior to 7.0.8-68.
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6
Affected Packages5 packages
Also affects: Debian Linux 9.0
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-229f-wq39-p955: Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to a↗2022-05-24
OSV▶
CVE-2020-27770: Due to a missing check for 0 value of `replace_extent`, it is possible for offset `p` to overflow in SubstituteString(), causing potential impact to a↗2020-12-04
📋Vendor Advisories
5Debian▶
CVE-2020-27770: imagemagick - Due to a missing check for 0 value of `replace_extent`, it is possible for offse...↗2020