CVE-2021-20244

NVD

https://nvd.nist.gov/vuln/detail/CVE-2021-20244

Severity

5.5

Medium

CVSS V3

Eliminate CVEs with Chainguard hardened images

Build, ship, and run secure software with minimal, hardened container images — rebuilt from source daily and guarded under our industry-leading remediation SLA.

Start for free

Description

A flaw was found in ImageMagick in MagickCore/visual-effects.c. An attacker who submits a crafted file that is processed by ImageMagick could trigger undefined behavior in the form of math division by zero. The highest threat from this vulnerability is to system availability.

References

https://nvd.nist.gov/vuln/detail/CVE-2021-20244
https://github.com/advisories/GHSA-2wj7-w2rp-g7h5
https://lists.debian.org/debian-lts-announce/2023/05/msg00020.html
https://bugzilla.redhat.com/show_bug.cgi?id=1928959
https://github.com/ImageMagick/ImageMagick/pull/3194
https://lists.debian.org/debian-lts-announce/2021/03/msg00030.html

Affected packages

Advisories are based on vulnerability information provided by Grype from Anchore. Learn how Chainguard creates security advisories.

CVE-2021-20244

Severity

Description

References

Affected packages

The trusted source for open source

Product

Solutions

Customers

Resources

Company