DirectorySecurity Advisories
Sign In
Security Advisories

CVE-2022-0284

Published

Last updated

NVD

https://nvd.nist.gov/vuln/detail/CVE-2022-0284

CGA ID

CGA-952w-cc2w-4pgg

Severity

7.1

High

CVSS V3

Description

A heap-based-buffer-over-read flaw was found in ImageMagick's GetPixelAlpha() function of 'pixel-accessor.h'. This vulnerability is triggered when an attacker passes a specially crafted Tagged Image File Format (TIFF) image to convert it into a PICON file format. This issue can potentially lead to a denial of service and information disclosure.

References

Affected packages


Safe Source for Open Sourceâ„¢
Media KitContact Us
© 2024 Chainguard. All Rights Reserved.
Private PolicyTerms of Use

Product

Chainguard Images