← volver
CVE-2022-0284

CVE-2022-0284

EPSS 0.6%CWE-125
A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can potentially lead to a denial of service and information disclosure.
Productos afectados
n/a · ImageMagick

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://access.redhat.com/security/cve/CVE-2022-0284https://bugzilla.redhat.com/show_bug.cgi?id=2045943https://github.com/ImageMagick/ImageMagick/commit/e50f19fd73c792ebe912df8ab83aa51a243a3da7https://github.com/ImageMagick/ImageMagick/issues/4729