FreshPorts - VuXML
This page displays vulnerability information about FreeBSD Ports.
The VUXML data was last processed by FreshPorts on 2024-11-23 05:42:14 UTC
List all Vulnerabilities, by package
List all Vulnerabilities, by date
k68
These are the vulnerabilities relating to the commit you have selected:
| VuXML ID | Description |
|---|
| 3e0ca488-b3f6-11eb-a5f7-a0f3c100ae18 | ImageMagick6 -- multiple vulnerabilities
CVE reports:
Several vulnerabilities have been discovered in ImageMagick:
- CVE-2021-20309: A flaw was found in ImageMagick in versions before 6.9.12,
where a division by zero in WaveImage() of MagickCore/visual-effects.c may trigger
undefined behavior via a crafted image file submitted to an application using ImageMagick.
- CVE-2021-20176: A divide-by-zero flaw was found in ImageMagick 6.9.11-57 in gem.c.
This flaw allows an attacker who submits a crafted file that is processed by ImageMagick
to trigger undefined behavior through a division by zero.
- CVE-2020-29599: ImageMagick before 6.9.11-40 mishandles the -authenticate option,
which allows setting a password for password-protected PDF files.
- And maybe some othersâ¦
Discovery 2020-12-17
Entry 2021-05-13
ImageMagick6
ImageMagick6-nox11
< 6.9.12.12,1
CVE-2020-29599
CVE-2021-20176
CVE-2021-20309
|