CVE-2019-13136

NVD

https://nvd.nist.gov/vuln/detail/CVE-2019-13136

Severity

7.8

High

CVSS V3

Eliminate CVEs with Chainguard hardened images

Build, ship, and run secure software with minimal, hardened container images — rebuilt from source daily and guarded under our industry-leading remediation SLA.

Start for free

Description

ImageMagick before 7.0.8-50 has an integer overflow vulnerability in the function TIFFSeekCustomStream in coders/tiff.c.

References

https://nvd.nist.gov/vuln/detail/CVE-2019-13136
https://github.com/advisories/GHSA-397j-8g2v-qc2h
http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00069.html
https://support.f5.com/csp/article/K03512441?utm_source=f5support&amp%3Butm_medium=RSS
https://github.com/ImageMagick/ImageMagick/commit/fe5f4b85e6b1b54d3b4588a77133c06ade46d891
https://github.com/ImageMagick/ImageMagick/issues/1602

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

The trusted source for open source

Talk to an expert

Privacy

Terms

CVE-2019-13136

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company