csaf_certbund - wid-sec-w-2023-2185

wid-sec-w-2023-2185

Vulnerability from csaf_certbund

Published

2023-08-27 22:00

Modified

2024-03-19 23:00

Summary

ImageMagick: Mehrere Schwachstellen ermöglichen Denial of Service

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.

Angriff

Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux - MacOS X - Windows - iPhoneOS

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "ImageMagick ist eine Sammlung von Programmbibliotheken und Werkzeugen, die Grafiken in zahlreichen Formaten verarbeiten kann.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in ImageMagick ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows\n- iPhoneOS",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2185 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2185.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2185 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2185"
      },
      {
        "category": "external",
        "summary": "ImageMagick Security Notification vom 2023-08-27",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-48541"
      },
      {
        "category": "external",
        "summary": "ImageMagick Security Notification vom 2023-08-27",
        "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-40211"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2023-2239 vom 2023-09-08",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2239.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2023-2240 vom 2023-09-08",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2240.html"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS2-2023-2251 vom 2023-09-21",
        "url": "https://alas.aws.amazon.com/AL2/ALAS-2023-2251.html"
      },
      {
        "category": "external",
        "summary": "Ubuntu Security Notice USN-6393-1 vom 2023-09-21",
        "url": "https://ubuntu.com/security/notices/USN-6393-1"
      },
      {
        "category": "external",
        "summary": "Amazon Linux Security Advisory ALAS-2023-1831 vom 2023-09-26",
        "url": "https://alas.aws.amazon.com/ALAS-2023-1831.html"
      },
      {
        "category": "external",
        "summary": "Oracle Linux Security Advisory ELSA-2023-5461 vom 2023-10-05",
        "url": "https://linux.oracle.com/errata/ELSA-2023-5461.html"
      },
      {
        "category": "external",
        "summary": "Red Hat Security Advisory RHSA-2023:5461 vom 2023-10-05",
        "url": "https://access.redhat.com/errata/RHSA-2023:5461"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-D23B0F5E76 vom 2024-01-15",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-d23b0f5e76"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-B695F01221 vom 2024-01-15",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-b695f01221"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-6F8C1D9005 vom 2024-01-15",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-6f8c1d9005"
      },
      {
        "category": "external",
        "summary": "Fedora Security Advisory FEDORA-2024-32CE2217E7 vom 2024-01-15",
        "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-32ce2217e7"
      },
      {
        "category": "external",
        "summary": "CentOS Security Advisory CESA-2023:5461 vom 2024-01-17",
        "url": "https://lists.centos.org/pipermail/centos-announce/2024-January/099209.html"
      },
      {
        "category": "external",
        "summary": "Debian Security Advisory DLA-3767 vom 2024-03-20",
        "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00020.html"
      }
    ],
    "source_lang": "en-US",
    "title": "ImageMagick: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2024-03-19T23:00:00.000+00:00",
      "generator": {
        "date": "2024-03-20T13:06:17.417+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.0"
        }
      },
      "id": "WID-SEC-W-2023-2185",
      "initial_release_date": "2023-08-27T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-08-27T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-09-07T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-09-20T22:00:00.000+00:00",
          "number": "3",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-09-21T22:00:00.000+00:00",
          "number": "4",
          "summary": "Neue Updates von Ubuntu aufgenommen"
        },
        {
          "date": "2023-09-25T22:00:00.000+00:00",
          "number": "5",
          "summary": "Neue Updates von Amazon aufgenommen"
        },
        {
          "date": "2023-10-05T22:00:00.000+00:00",
          "number": "6",
          "summary": "Neue Updates von Oracle Linux und Red Hat aufgenommen"
        },
        {
          "date": "2023-10-15T22:00:00.000+00:00",
          "number": "7",
          "summary": "Referenz(en) aufgenommen: 2235480"
        },
        {
          "date": "2024-01-15T23:00:00.000+00:00",
          "number": "8",
          "summary": "Neue Updates von Fedora aufgenommen"
        },
        {
          "date": "2024-01-17T23:00:00.000+00:00",
          "number": "9",
          "summary": "Neue Updates von CentOS aufgenommen"
        },
        {
          "date": "2024-03-19T23:00:00.000+00:00",
          "number": "10",
          "summary": "Neue Updates von Debian aufgenommen"
        }
      ],
      "status": "final",
      "version": "10"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Amazon Linux 2",
            "product": {
              "name": "Amazon Linux 2",
              "product_id": "398363",
              "product_identification_helper": {
                "cpe": "cpe:/o:amazon:linux_2:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Amazon"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Debian Linux",
            "product": {
              "name": "Debian Linux",
              "product_id": "2951",
              "product_identification_helper": {
                "cpe": "cpe:/o:debian:debian_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Debian"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Fedora Linux",
            "product": {
              "name": "Fedora Linux",
              "product_id": "74185",
              "product_identification_helper": {
                "cpe": "cpe:/o:fedoraproject:fedora:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Fedora"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Open Source CentOS",
            "product": {
              "name": "Open Source CentOS",
              "product_id": "1727",
              "product_identification_helper": {
                "cpe": "cpe:/o:centos:centos:-"
              }
            }
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "6.9.11-22",
                "product": {
                  "name": "Open Source ImageMagick 6.9.11-22",
                  "product_id": "T029573",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:imagemagick:imagemagick:6.9.11-22"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.0.10-45",
                "product": {
                  "name": "Open Source ImageMagick 7.0.10-45",
                  "product_id": "T029574",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:imagemagick:imagemagick:7.0.10-45"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "7.1.0-4",
                "product": {
                  "name": "Open Source ImageMagick 7.1.0-4",
                  "product_id": "T029575",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:imagemagick:imagemagick:7.1.0-4"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "ImageMagick"
          }
        ],
        "category": "vendor",
        "name": "Open Source"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Oracle Linux",
            "product": {
              "name": "Oracle Linux",
              "product_id": "T004914",
              "product_identification_helper": {
                "cpe": "cpe:/o:oracle:linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Oracle"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Red Hat Enterprise Linux",
            "product": {
              "name": "Red Hat Enterprise Linux",
              "product_id": "67646",
              "product_identification_helper": {
                "cpe": "cpe:/o:redhat:enterprise_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Ubuntu Linux",
            "product": {
              "name": "Ubuntu Linux",
              "product_id": "T000126",
              "product_identification_helper": {
                "cpe": "cpe:/o:canonical:ubuntu_linux:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Ubuntu"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2021-40211",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in ImageMagick. Dieser Fehler besteht in der Funktion ReadEnhMetaFile von coders/emf.c aufgrund eines Divide By Zero. Ein Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "2951",
          "67646",
          "T000126",
          "398363",
          "1727",
          "T004914",
          "74185",
          "T029575"
        ]
      },
      "release_date": "2023-08-27T22:00:00Z",
      "title": "CVE-2021-40211"
    },
    {
      "cve": "CVE-2022-48541",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in ImageMagick. Dieser Fehler besteht in der Komponente Identify Help Command Handler aufgrund einer fehlenden Freigabe von Speicher nach der effektiven Lebensdauer. Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029574",
          "T029573",
          "2951",
          "67646",
          "T000126",
          "398363",
          "1727",
          "T004914",
          "74185"
        ]
      },
      "release_date": "2023-08-27T22:00:00Z",
      "title": "CVE-2022-48541"
    }
  ]
}

cve-2022-48541

Vulnerability from cvelistv5

Published

2023-08-22 00:00

Modified

2024-08-03 15:17

Severity ?

Summary

A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial of service via the "identify -help" command.

References

▼	URL	Tags
	https://github.com/ImageMagick/ImageMagick/issues/2889
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LICYTADFJAFPZW3Y2MKNCJIUYODPAG4L/	vendor-advisory
	https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YAULDP3GG5KI3XITQ5XSMRSILCBZS2VK/	vendor-advisory
	https://lists.debian.org/debian-lts-announce/2024/03/msg00020.html	mailing-list

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T15:17:55.146Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/ImageMagick/ImageMagick/issues/2889"
          },
          {
            "name": "FEDORA-2024-6f8c1d9005",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LICYTADFJAFPZW3Y2MKNCJIUYODPAG4L/"
          },
          {
            "name": "FEDORA-2024-d23b0f5e76",
            "tags": [
              "vendor-advisory",
              "x_transferred"
            ],
            "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YAULDP3GG5KI3XITQ5XSMRSILCBZS2VK/"
          },
          {
            "name": "[debian-lts-announce] 20240320 [SECURITY] [DLA 3767-1] imagemagick security update",
            "tags": [
              "mailing-list",
              "x_transferred"
            ],
            "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00020.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A memory leak in ImageMagick 7.0.10-45 and 6.9.11-22 allows remote attackers to perform a denial of service via the \"identify -help\" command."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-03-20T10:05:57.934695",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/ImageMagick/ImageMagick/issues/2889"
        },
        {
          "name": "FEDORA-2024-6f8c1d9005",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LICYTADFJAFPZW3Y2MKNCJIUYODPAG4L/"
        },
        {
          "name": "FEDORA-2024-d23b0f5e76",
          "tags": [
            "vendor-advisory"
          ],
          "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YAULDP3GG5KI3XITQ5XSMRSILCBZS2VK/"
        },
        {
          "name": "[debian-lts-announce] 20240320 [SECURITY] [DLA 3767-1] imagemagick security update",
          "tags": [
            "mailing-list"
          ],
          "url": "https://lists.debian.org/debian-lts-announce/2024/03/msg00020.html"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2022-48541",
    "datePublished": "2023-08-22T00:00:00",
    "dateReserved": "2023-07-23T00:00:00",
    "dateUpdated": "2024-08-03T15:17:55.146Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

cve-2021-40211

Vulnerability from cvelistv5

Published

2023-08-22 00:00

Modified

2024-10-03 18:11

Severity ?

Summary

An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c.

References

▼	URL	Tags
	https://github.com/ImageMagick/ImageMagick/issues/4097

Impacted products

▼	Vendor	Product
	n/a	n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-04T02:27:31.838Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://github.com/ImageMagick/ImageMagick/issues/4097"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2021-40211",
                "options": [
                  {
                    "Exploitation": "poc"
                  },
                  {
                    "Automatable": "yes"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-10-03T18:10:55.555082Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-10-03T18:11:20.813Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "An issue was discovered with ImageMagick 7.1.0-4 via Division by zero in function ReadEnhMetaFile of coders/emf.c."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-08-22T15:45:53.726669",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "url": "https://github.com/ImageMagick/ImageMagick/issues/4097"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2021-40211",
    "datePublished": "2023-08-22T00:00:00",
    "dateReserved": "2021-08-30T00:00:00",
    "dateUpdated": "2024-10-03T18:11:20.813Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

wid-sec-w-2023-2185

Vulnerability from csaf_certbund

cve-2022-48541

Vulnerability from cvelistv5

cve-2021-40211

Vulnerability from cvelistv5

Tags

Sightings

Nomenclature