ImageMagick (SUSE:Linux Enterprise Module for Development Tools 15 SP3) — known CVEs & security advisories
Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Module for Development Tools 15 SP3 package ImageMagick, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVE-2022-32547 — CVSS 7.8 (high): In ImageMagick, there is load of misaligned address for type 'double', which requires 8 byte alignment and for type 'float', which requires…
CVE-2022-32545 — CVSS 7.8 (high): A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned char' at coders/psd.c…
CVE-2022-32546 — CVSS 7.8 (high): A vulnerability was found in ImageMagick, causing an outside the range of representable values of type 'unsigned long' at coders/pcl.c…
CVE-2022-0284 — CVSS 7.1 (high): A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is…
CVE-2022-2719 — CVSS 5.5 (medium): In ImageMagick, a crafted file could trigger an assertion failure when a call to WriteImages was made in MagickWand/operation.c, due to a…
CVE-2021-20176 — CVSS 5.5 (medium): A divide-by-zero flaw was found in ImageMagick 6.9.11-57 and 7.0.10-57 in gem.c. This flaw allows an attacker who submits a crafted file…
CVE-2021-20224 — CVSS 5.5 (medium): An integer overflow issue was discovered in ImageMagick's ExportIndexQuantum() function in MagickCore/quantum-export.c. Function calls to…
CVE-2021-3574 — CVSS 3.3 (low): A vulnerability was found in ImageMagick-7.0.11-5, where executing a crafted file with the convert command, ASAN detects memory leaks.