CLSA-2022-1648142109

See a problem?
Import Source
https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json
JSON Data
https://api.osv.dev/v1/vulns/CLSA-2022-1648142109
Upstream
Published
2022-03-24T17:15:09Z
Modified
2026-06-04T10:04:02.603667896Z
Summary
Fix CVE(s): CVE-2020-27762, CVE-2020-27770, CVE-2020-27760, CVE-2020-25665, CVE-2020-19667, CVE-2020-25674, CVE-2017-13144, CVE-2020-25676, CVE-2020-25664, CVE-2020-27753, CVE-2020-27750
Details
  • SECURITY UPDATE: Crash if image dimensions are too large
    • debian/patches/CVE-2017-13144-*.patch: Fix memory leak in MPC image format
    • CVE-2017-13144
  • SECURITY UPDATE: Stack-based buffer overflow
    • debian/patches/CVE-2020-19667.patch: Zero-out memory before use
    • CVE-2020-19667
  • SECURITY UPDATE: Heap-based buffer overflow
    • debian/patches/CVE-2020-25664.patch: Expand virtual memory allocation by 256 bytes
    • CVE-2020-25664
  • SECURITY UPDATE: Heap-based buffer overflow
    • debian/patches/CVE-2020-25665.patch: Expand virtual memory allocation by 256 bytes
    • CVE-2020-25665
  • SECURITY UPDATE: Heap-based buffer overflow
    • debian/patches/CVE-2020-25674.patch: Properly calculate upper limit for color loop
    • CVE-2020-25674
  • SECURITY UPDATE: Signed integer overflows
    • debian/patches/CVE-2020-25676.patch: Constrain pixel offsets in magick/pixel.c
    • CVE-2020-25676
  • SECURITY UPDATE: Division by zero
    • debian/patches/CVE-2020-27750.patch: Replace division by multiplication in magick/colorspace-private.h
    • CVE-2020-27750
  • SECURITY UPDATE: Memory leaks
    • debian/patches/CVE-2020-27753.patch: Fix memory handling in coders/miff.c
    • CVE-2020-27753
  • SECURITY UPDATE: Division by zero
    • debian/patches/CVE-2020-27760.patch: Fix division by zeros in magick/enhance.c
    • CVE-2020-27760
  • SECURITY UPDATE: Outside the range of representable values
    • debian/patches/CVE-2020-27762.patch: Adds consistency checks in coders/hdr.c
    • CVE-2020-27762
  • SECURITY UPDATE: Unsigned int overflow
    • debian/patches/CVE-2020-27770.patch: Guard against underflow when decrement value in magick/string.c
    • CVE-2020-27770
References

Affected packages

TuxCare:Ubuntu:16.04
imagemagick

Package

Name
imagemagick
Purl
pkg:deb/tuxcare/imagemagick?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
imagemagick-6.q16

Package

Name
imagemagick-6.q16
Purl
pkg:deb/tuxcare/imagemagick-6.q16?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
imagemagick-common

Package

Name
imagemagick-common
Purl
pkg:deb/tuxcare/imagemagick-common?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
imagemagick-doc

Package

Name
imagemagick-doc
Purl
pkg:deb/tuxcare/imagemagick-doc?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libimage-magick-perl

Package

Name
libimage-magick-perl
Purl
pkg:deb/tuxcare/libimage-magick-perl?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libimage-magick-q16-perl

Package

Name
libimage-magick-q16-perl
Purl
pkg:deb/tuxcare/libimage-magick-q16-perl?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagick++-6-headers

Package

Name
libmagick++-6-headers
Purl
pkg:deb/tuxcare/libmagick++-6-headers?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagick++-6.q16-5v5

Package

Name
libmagick++-6.q16-5v5
Purl
pkg:deb/tuxcare/libmagick++-6.q16-5v5?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagick++-6.q16-dev

Package

Name
libmagick++-6.q16-dev
Purl
pkg:deb/tuxcare/libmagick++-6.q16-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagick++-dev

Package

Name
libmagick++-dev
Purl
pkg:deb/tuxcare/libmagick++-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-6-arch-config

Package

Name
libmagickcore-6-arch-config
Purl
pkg:deb/tuxcare/libmagickcore-6-arch-config?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-6-headers

Package

Name
libmagickcore-6-headers
Purl
pkg:deb/tuxcare/libmagickcore-6-headers?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-6.q16-2

Package

Name
libmagickcore-6.q16-2
Purl
pkg:deb/tuxcare/libmagickcore-6.q16-2?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-6.q16-2-extra

Package

Name
libmagickcore-6.q16-2-extra
Purl
pkg:deb/tuxcare/libmagickcore-6.q16-2-extra?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-6.q16-dev

Package

Name
libmagickcore-6.q16-dev
Purl
pkg:deb/tuxcare/libmagickcore-6.q16-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickcore-dev

Package

Name
libmagickcore-dev
Purl
pkg:deb/tuxcare/libmagickcore-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickwand-6-headers

Package

Name
libmagickwand-6-headers
Purl
pkg:deb/tuxcare/libmagickwand-6-headers?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickwand-6.q16-2

Package

Name
libmagickwand-6.q16-2
Purl
pkg:deb/tuxcare/libmagickwand-6.q16-2?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickwand-6.q16-dev

Package

Name
libmagickwand-6.q16-dev
Purl
pkg:deb/tuxcare/libmagickwand-6.q16-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
libmagickwand-dev

Package

Name
libmagickwand-dev
Purl
pkg:deb/tuxcare/libmagickwand-dev?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"
perlmagick

Package

Name
perlmagick
Purl
pkg:deb/tuxcare/perlmagick?distro=ubuntu-16.04

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
8:6.8.9.9-7ubuntu5.17+tuxcare.els2

Database specific

source 
"https://github.com/cloudlinux/tuxcare-osv/tree/main/data/els_os/ubuntu16.04els/CLSA-2022-1648142109.json"