CVE-2020-27764 Information

Description

In /MagickCore/statistic.c there are several areas in ApplyEvaluateOperator() where a size_t cast should have been a ssize_t cast which causes out-of-range values under some circumstances when a crafted input file is processed by ImageMagick. Red Hat Product Security marked this as Low severity because although it could potentially lead to an impact to application availability no specific impact was shown in this case. This flaw affects ImageMagick versions prior to 6.9.10-69.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L

Reference

https://github.com/ImageMagick/ImageMagick6/commit/3e21bc8a58b4ae38d24c7e283837cc279f35b6a5 https://bugzilla.redhat.com/show_bug.cgi?id=1894683 https://lists.debian.org/debian-lts-announce/2021/03/msg00030.html

Attack Complexity

LOW

Privileges Required

NONE

User Interaction Required

NONE

Scope

REQUIRED

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

LOW

Base Severity

3.3