CVE-2020-27761

low-risk

Published 2020-12-03

WritePALMImage() in /coders/palm.c used size_t casts in several areas of a calculation which could lead to values outside the range of representable type `unsigned long` undefined behavior when a crafted input file was processed by ImageMagick. The patch casts to `ssize_t` instead to avoid this issue. Red Hat Product Security marked the Severity as Low because although it could potentially lead to an impact to application availability, no specific impact was shown in this case. This flaw affects ImageMagick versions prior to ImageMagick 7.0.9-0.

Do I need to act?

0.13% chance of exploitation

EPSS score — low exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 3.3/10 Low

LOCAL / LOW complexity

Affected Products (2)

Imagemagick

Debian Linux

Affected Vendors

Debian Imagemagick

References (6)

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1894679

Mailing List https://lists.debian.org/debian-lts-announce/2021/03/msg00030.html

https://lists.debian.org/debian-lts-announce/2023/03/msg00008.html

Issue Tracking https://bugzilla.redhat.com/show_bug.cgi?id=1894679

Mailing List https://lists.debian.org/debian-lts-announce/2021/03/msg00030.html

https://lists.debian.org/debian-lts-announce/2023/03/msg00008.html

/ 100

low-risk

Severity 13/34 · Low

Exploitability 1/34 · Minimal

Exposure 7/34 · Low