CVE-2022-32545: A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or…

high7.8CVSS 3.1

AVLACLPRNUIRSUCHIHAH

A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c, when crafted or untrusted input is processed. This leads to a negative impact to application availability or other problems related to undefined behavior.

Affected

23 ranges

Vendor	Product	Version range	Fixed in
debian	imagemagick	< imagemagick 8:6.9.11.60+dfsg-1.5 (bookworm)	imagemagick 8:6.9.11.60+dfsg-1.5 (bookworm)
fedoraproject	extra_packages_for_enterprise_linux	—	—
fedoraproject	fedora	—	—
imagemagick	imagemagick	< 6.9.12-43	6.9.12-43
imagemagick	imagemagick	—	—
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.3+deb11u2	8:6.9.11.60+dfsg-1.3+deb11u2
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.5	8:6.9.11.60+dfsg-1.5
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.5	8:6.9.11.60+dfsg-1.5
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.5	8:6.9.11.60+dfsg-1.5
imagemagick	imagemagick	>= 0 < 8:6.9.7.4+dfsg-16ubuntu6.14	8:6.9.7.4+dfsg-16ubuntu6.14
imagemagick	imagemagick	>= 0 < 8:6.9.10.23+dfsg-2.1ubuntu11.9	8:6.9.10.23+dfsg-2.1ubuntu11.9
imagemagick	imagemagick	>= 0 < 8:6.9.10.23+dfsg-2.1ubuntu11.10	8:6.9.10.23+dfsg-2.1ubuntu11.10
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5	8:6.9.11.60+dfsg-1.3ubuntu0.22.04.5
imagemagick	imagemagick	>= 0 < 8:6.7.7.10-6ubuntu3.13+esm3	8:6.7.7.10-6ubuntu3.13+esm3
imagemagick	imagemagick	>= 0 < 8:6.8.9.9-7ubuntu5.16+esm4	8:6.8.9.9-7ubuntu5.16+esm4
imagemagick	imagemagick	>= 0 < 8:6.8.9.9-7ubuntu5.16+esm8	8:6.8.9.9-7ubuntu5.16+esm8
imagemagick	imagemagick	>= 0 < 8:6.8.9.9-7ubuntu5.16+esm5	8:6.8.9.9-7ubuntu5.16+esm5
imagemagick	imagemagick	>= 0 < 8:6.9.7.4+dfsg-16ubuntu6.15+esm1	8:6.9.7.4+dfsg-16ubuntu6.15+esm1
imagemagick	imagemagick	>= 0 < 8:6.9.10.23+dfsg-2.1ubuntu11.4+esm1	8:6.9.10.23+dfsg-2.1ubuntu11.4+esm1
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1+esm1	8:6.9.11.60+dfsg-1.3ubuntu0.22.04.1+esm1
imagemagick	imagemagick	>= 0 < 8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm2	8:6.9.11.60+dfsg-1.3ubuntu0.22.04.3+esm2
imagemagick	imagemagick	>= 7.1.0 < 7.1.0-28	7.1.0-28
redhat	enterprise_linux	—	—

CVSS provenance

nvdv3.17.8HIGHCVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

osv7.8HIGH